Networkworld.com  VOLUME  27  NUMBER  14  $5.00 


Techdebate  BLOCKING  SOCIAL  NETWORK  SITES?  Does  it  do  more  harm  than  good?  pageis 

NETWORKWORLO 


THE  CONNECTED  ENTERPRISE  =  JULY  26,  2010 


XlTechnologies  wins  test  of 
six  third-party  search  tools  for 
Windows  desktops.  Page  26  - 


Avaya  banking  on 
Nortel  dividends 


BYTIM  GREENE 


WHILE  AVAYA’S  contact 
center  and  unified  communi¬ 
cations  announcements  last 
week  signal  the  company  is 
fighting  for  a  dominant  posi¬ 
tion  in  those  areas,  it  faces 
internal  challenges  and  formi¬ 
dable  competitors  including 
Microsoft  and  Cisco. 

The  company  is  in  the  midst 
of  digesting  and  integrating 
Nortel’s  enterprise  division, 
which  it  bought  last  year  for 
$900  million  and  from  which 
it  expects  to  reap  big  returns 
by  next  spring.  At  the  same 
time,  it  is  dealing  with  the 

same  generally  soft  economy  that  other  vendors  are  —  though 
Cisco  is  registering  surprisingly  strong  revenue  gains. 

Avaya’s  CEO  says  the  next  six  to  nine  months  are  criti¬ 
cal  as  it  tries  to  integrate  the  former  Nortel  Enterprise  divi¬ 
sion  —  including  network  infrastructure  and  business 
telephony  —  into  its  fold.  The  purchase  was  finalized  last 
December,  so  the  company  has  just  completed  its  second  full 
quarter  since  the  acquisition.  “On  most  operational  details 

►  See  Av ay  a,  page  12 


//  Innovation 
II  is  something 
that  we  want 
people  to  take 
notice  of  this 
year.” 

KEVIN  KENNEDY,  CEO,  AVAYA 
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A  look  at  bare-metal 
hypervisor  basics 


BY  JON  BRODKIN 


DESKTOP  VIRTUALIZATION  is  hot  -  ask  any  IT  pundit. 
But  it  can  also  be  confusing,  because  the  market  contains  a 
variety  of  server-  and  client-based  technologies  for  creating 
virtual  desktops. 

Virtual  desktop  infrastructure  (VDI)  may  be  the  best- 
known  model,  but  a  new  entry  into  the  desktop  virtualiza¬ 
tion  mix  is  the  bare-metal  desktop  hypervisor.  Proponents 

►  See  Hypervisor, page  11 
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opportunity.  With  Sprint  Mobile  Integration  and  Global  MPLS, 
you’ll  have  one  number,  one  voicemail  and  one  easy  way 
to  control  mobile  usage.  Simplify  the  way  your  company 
stays  in  touch.  Make  it  easier  for  clients  to  reach  you. 

And  reduce  company  telecom  expenses.  Less  dialing, 
happier  clients.  Start  closing.  1-866-653-1056 
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IT  professionals  name  Sprint  best  provider  of  MPLS-de  live  ring 
best  value,  customer  service,  technology  and  network  reliability. 


Coverage  not  available  everywhere.  The  3G  Sprint  Mobile  Broadband  Network  (including  data  roaming)  reaches  over  269  million  people.  The  Nationwide  Sprint  and  Nextel  National  Networks  reach  over  275  and  274  million  people, 
respectively.  Other  restrictions  apply.  See  store  or  sprint.com  for  details.  ©201 0  Sprint.  Sprint  and  the  logo  are  trademarks  of  Sprint.  Other  marks  are  the  property  of  their  respective  owners. 
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FROM  THE  EDITOR  |  JOHN  DIX 

Bring  your  own 
everything 

The  “bring  your  own”  craze  started  with  instant 
messaging  but  certainly  didn’t  end  there.  Today 
employees  are  bringing  the  rest  of  their  social 
network  tools  to  work,  their 
own  smartphones,  their  own 
computers,  and  now,  with  the 
advent  of  Google  Voice,  their 
own  phone  number  and  voice  mail. 

JP  Rangaswami,  chief  scientist  for  the  BT  Group,  has  it 
right  when  he  says  that  IT’s  success  increasingly  will  be 
measured  by  how  well  we  give  up  control.  After  all,  most 
of  this  is  going  to  happen  with  or  without  IT  approval. 

In  the  case  of  the  newly  available  Google  Voice,  employees  can  choose  a  number 
and  then  go  online  to  dictate  how  and  when  Google  Voice  calls  are  routed  among 
their  desk,  cell  and  home  phones. 

That  sounds  harmless,  but  if  employees  circulate  their  Google  Voice  number  to 
business  associates  (and  they  will  —  why  else  sign  up?),  what  happens  when  they 
take  a  job  at  a  competitor?  Customer  calls  will  get  routed  directly  to  their  new  desk. 
And  what  are  the  compliance  implications  given  Google  Voice  comes  with  voice 
mail  that  can  preempt  desk  and  cell  mail  systems,  and  transcribe  messages  and 
deliver  them  as  e-mail? 

Then  there  is  the  iPad  to  consider.  Apple  sold  2  million  of  the  devices  in  less 
than  60  days,  and  you  can  bet  many  showed  up  on  corporate  networks  just  as  fast. 
In  fact,  the  arrival  of  the  iPad  may  force  companies  to  consider  “bring  your  own 
computer”  (BYOC)  programs  before  they  wanted  to. 

BYOC  is  talked  about  a  lot  more  than  practiced,  but  there  are  converts.  Kraft 
Foods,  for  example,  started  out  with  a  BYO-smartphone  last  year  and  recently  added 
BYOC  for  certain  employees.  The  deal:  the  company  specified  purchasing  guidelines 
and  gives  employees  a  stipend  if  they  agree  to  some  core  policies  and  promise  to  take 
care  of  computer  problems  (the  company  offers  some  self-help  tools). 

What’s  holding  back  broader  industry  adoption  of  BYOC  are  nettlesome  ques¬ 
tions  about  who  is  responsible  for  what  when  problems  arise.  Can  IT  examine 
the  device  if  they  suspect  any  wrong  doing?  Can  IT  access  data  on  the  device  if  the 
employee  quits?  What  if  there  is  unlicensed  software  on  the  device? 

Virtualization  may  provide  an  answer  to  these  questions:  have  BYOC  adherents 
load  a  company  supplied  virtual  machine.  Everything  in  the  VM  is  company  prop¬ 
erty  and  properly  locked  down  and  backed  up.  Wash  your  hands  of  everything 
else.  But  the  question  of  whether  it  is  worth  the  time/effort/risk  is  still  up  in  the  air. 
There  is  little  question,  however,  that  the  BYO  trend  will  abate  anytime  soon. 

jdix@nww.com 
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A  vote  for  Windows  Phone  7 

©  FROM  ALL  THE  contact  I  have  had  at  a 
few  conferences,  and  contact  with  an  app 
development  firm  I  do  consulting  work 
with,  WP7  is  top  notch.  (Re:  Is  Windows 
Phone  7  really  a  “disaster?”;tinyurl. 
com/2wbmr7d.)  It  is  a  very  different  UI 
and  takes  just  a  slight  bit  getting  use  to 
over  the  carbon  copy  of  Android/IOS. 
However,  after  you  spend  just  a  few  min¬ 
utes  playing  around  you  can  fly  on  that 
thing.  And  as  MS  puts  it,  the  brain  doesn’t 
even  have  to  think.  That  is  a  really  true 
statement. 

MS’s  biggest  selling  point  is  the  seam¬ 
less  integration  with  everything  in  a  sleek 
and  stylish  way.  Meaning  xbox  live,  sky- 
drive,  online  office,  contacts,  email  all  just 
work  really  well  out  of  the  box  without 
add-on  applications.  Granted  xbox  live 
doesn’t  have  many  features  turned  on  but 
it’s  coming. 

I  think  the  view  window  style  is  what 
annoys  some  people.  This  is  where  you 
get  a  “page”  that  is  really  bigger  than  the 
phone’s  display  and  get  to  finger  scroll 
around  it.  At  first  I  hated  this  concept,  it 
looks  really  bad  in  screenshots/demos  as 
well.  On  the  flip  side  it  allows  app  develop¬ 
ers  to  build  to  larger 
sizes,  and  just  have 
user  pan  around  the 
application  as  needed. 

I  built  a  test  app  that 
works  well.  You  use 
your  finger  to  scroll 
around  to  different 
sections  of  the  applica¬ 
tion,  instead  of  paging 
through  it. 

I  think  Microsoft’s 
biggest  challenge 
will  be  talking  people 
into  trying  the  new 
UI.  Same  issue  they 
have  with  windows  7,  the  UI  is  so  differ¬ 
ent  from  what  XP  users  are  use  to  they 
dislike  it  at  first  but  after  using  it  for  a  few 
weeks  don’t  know  why  they  thought  XP 
was  good  at  all. 

mtcoder 

Cell  phone  radiation:  A  tough  call 

©  STUDIES  HAVE  INDEED  shown  tissue 
damage  accomplished  by  focused  ener¬ 
gies  —typically  studied  at  focused  radar 
power  levels  at  distances  beyond  lm. 

(Re:  San  Francisco’s  Handset  Radiation 


Ordinance:  The  Fallout  Begins;  tinyurl. 
com/3xccauf.)  Microwaves  and  almost 
all  RF  can  and  will  do  all  kinds  of  things 
to  cell  structures,  and  you  can  still  find 
many  folks  out  there  having  had  bone 
and  tissues  damaged  while  servicing 
energized  radars. 

However,  the  radiated  emission  levels 
of  cell  phones,  and  this  depends  on  the 
frequency  emitted  and  pattern  of  the  radi¬ 
ator,  do  not  seem  to  show  damage  over  the 
short  term  (a  few  years  of  use).  Does  that 
mean  SO  years  of  holding  it  to  your  head 
will  leave  you  unharmed?  I  would  not  bet 
one  nickel  that  it  would  not. 

Anon 

Go  with  what  works 

©  WHERE  I  WORK,  we  are  chucking  that 
other  OS.  It  does  not  work  for  us.  We  had 
repeated  malware  infections  annually 
per  PC.  What’s  with  that?  I  can  handle 
fewer  features  but  I  cannot  handle  my 
PC  working  for  bad  guys.  (Re:  Microsoft 
OpenSource  Platform  Project;  tinyurl. 
com/3734j68.) 

Large  enterprises  using  GNU/Linux 
has  not  been  news  for  the  last  several 
years.  It’s  too  common-place.  The  largest 
roll-out  I  have  heard 
of  was  the  educa¬ 
tion  system  of  Brazil 
with  hundreds  of 
thousands  of  seats. 
GNU/Linux  works 
for  individuals  and 
groups  of  any  size.  It 
does  not  need  to  copy 
M$  or  any  propri¬ 
etary  software. 

If  you  have  to 
restore  your  database 
from  scratch,  you  do 
not  need  it  running  as 
you  restore  it.  What 
use  is  a  partially  restored  database?  If  you 
do  need  to  restore  quickly,  you  will  switch 
on  the  backup  as  a  network  storage  array. 
Then  the  backup  is  in  operation  instantly. 

If  we  wanted  a  copy  of  Office  2010  we 
would  buy  one.  We  do  not.  We  like  Ope- 
nOffice.org  because  it  works  for  us.  When 
I  work  on  large  projects,  I  use  LyX.  I  have 
a  choice  of  tools  depending  on  what  I  am 
doing.  Office  2010  tries  to  do  everything 
in  one  package  and  it  succeeds  in  only  two, 
bloat  and  sending  cash  to  MS. 

RobertPogson 
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IT  workers  eye 
greener  pastures 


CONFIDENCE  AMONG  TECH  workers  in  the  economy  is 


IBM  spent  $1.5  billion  over  three  years  to  develop  zEnterprise, 


on  the  rise  -  which  means  IT  pros  still  smarting  from  salary 
cuts  and  supersized  workloads  might  be  getting  ready  to  bolt. 
Harris  Interactive  surveyed  4,367  employed  tech  workers, 
including  241  in  IT  operations,  in  the  second  quarter  of  2010 
and  found  that  61%  of  IT  workers  earning  between  $35,000 
and  $50,000  a  year  are  "likely"  to  start  looking  for  a  new  job 
over  the  next  12  months.  Meanwhile,  27%  of  IT  workers  now 
making  between  $50,000  and  $75,000  annually  and  36%  of 
those  whose  salaries  exceed  $75,000  are  “likely”  to  begin  a  job 
search.  The  survey,  dubbed  the  IT  Employee  Confidence  Index, 
was  conducted  by  Harris  on  behalf  of  Technisource,  a  national 
staffing  and  recruiting  firm,  tinyurl.com/nmljyt 
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4G-satellite 
network  planned 
for  U.S. 

AN  INVESTMENT  company  has 
hired  Nokia  Siemens  Networks 
to  build  a  hybrid  4G-satellite 
mobile  network,  called  Light- 
Squared,  across  the  U.S.  to  go 
live  next  year.  Harbinger  Capi¬ 
tal  Partners,  which  earlier  this 
year  acquired  satellite  phone 
service  provider  SkyTerra, 
says  it  will  pay  NSN  more  than 
$7  billion  over  eight  years  to 
design,  build  and  operate  the 


network.  A  commercial  launch 
will  come  in  the  second  half  of 
2011.  and  LightSquared  will 
reach  92%  of  the  U.S.  popula¬ 
tion  by  2015,  Harbinger  expects, 
The  rapidly  growing  demand 
for  mobile  broadband  makes  a 
new  4G  network  seem  promis¬ 
ing,  especially  if  it  can  reach 
poorly  served  rural  areas  via 
satellite.  But  Harbinger’s  fully 
wholesale  business  model  has 
never  been  tested  on  a  national 
scale  in  the  U.S.,  nor  has  the 
concept  of  combined  cellular 
and  satellite  coverage,  tinyurl. 
com/2vvslyw 


Not  your  father's 
mainframe 

IBM  LAST  week  took  the  wraps 
off  its  zEnterprise  mainframe 
server  and  a  new  systems  design 
that  allows  IT  teams  to  manage 
diverse  server  workloads  — 
running  across  IBM  System 
z,  Power7  and  System  x  blade 
servers  —  as  a  single,  virtual¬ 
ized  system  from  the  mainframe 
console.  The  hybrid  approach  is 
intended  to  reduce  data  center 
sprawl  and  create  a  bridge  from 
the  mainframe  to  x86  and  Unix 
server  systems.  The  zEnterprise 
system,  which  can  have  as  many 
as  96  processors,  will  support 
up  to  114  blades  with  eight  cores. 
It’s  up  to  60%  faster  than  its 
mainframe  predecessor,  System 
zlO,  for  new  workloads,  yet  uses 
the  same  amount  of  energy,  IBM 
says.  Big  Blue  calls  it  the  most 
significant  mainframe  design 
change  in  20  years. 
tinyurl.com/33mhr28 

iPhones  drive  up 
AT&T  net  income 

WHAT  WOULD  AT&T  do 
without  Apple?  The  telecom 


provider  reported  net  income  of 
$4  billion  for  the  second  quarter 
of  2010,  up  nearly  26%  from  the 
second  quarter  of 2009,  thanks 
in  part  to  increasing  demand 
for  Apple’s  iPhone  and  other 
smartphones.  AT&T  reported 
3.2  million  iPhone  activations 
during  the  quarter,  a  quarterly 
high  for  iPhone  activations, 
with  27%  from  customers  new 
to  AT&T.  Earnings  per  share 
for  the  quarter  was  $0.68,  sig¬ 
nificantly  higher  than  analyst 
expectations  of  $0.57. 
tinyurl.com/32um62h 

Is  ubiquitous 
encryption 
technology  on 
the  horizon? 

A  GROUP  of  researchers  pre¬ 
senting  at  next  month’s  Usenix 
Security  Symposium  will  detail 
a  technology  they  say  could 
make  end-to-end  encryption 
of  TCP  traffic  the  default,  not 
the  exception.  The  group,  made 
of  mostly  Stanford  University 
researchers,  will  talk  up  a  TCP 
extension  known  as  tcpcrypt. 
Implemented  in  the  transport 


TRUE  FACT 


How  much  more  it  costs  to  find  data  for 
legal  proceedings  (e-discovery)  than  it 

costs  to  store  that  data  .  SOURCE:  SYMANTEC 
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FOR 
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to  Watc  h 

AWARDS  2011 


We’re  looking  for  the  next  generation  of  standout  IT  leaders.  The 
CIO  Ones  to  Watch  Award  honors  the  rising  stars  in  IT— the  senior  staff 
destined  to  become  the  CIOs  of  the  future— as  identified  and  sponsored 
by  the  CIOs  of  today’s  leading  organizations. 


Apply 


CIO  magazine  and  the  CIO  Executive  Council’s  sixth  annual  Ones  to 
Watch  award  identifies  the  rising  stars  in  IT.  To  be  honored,  these 
future  CIOs  must  have  demonstrated  leadership,  driven  innovation 
and  delivered  value  to  their  business;  in  short,  they  will  soon  be  able 
to  head  up  their  own  IT  organization.  The  awards  are  judged  by  a 
panel  of  veteran  CIOs  experienced  in  leadership  development  and 
understand  the  characteristics  that  prepare  today’s  IT  managers  to 
be  tomorrow’s  successful  CIOs. 


Apply  today  at:  cio.com/otw 

Be  Seen  Winners  will  be  honored  during  the 

CIO  Leadership  Event  May  1-3,  2011, 
at  the  Marriott  Sawgrass,  Ponte  Vedra 
Beach  FL,  featured  in  the  May  issue  of 
CIO  magazine  and  online  at  cio.com 
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programs  visit:  cio.com/cio-awards 
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GOOD  I  BAD  I  UGLY 


Wind  for  the  Web 

GOOGLE  HAS  signed  a  20-year  agreement  to  buy 
energy  from  a  wind  farm  in  Iowa,  giving  it  access 
to  enough  renewable  energy  to  supply  several 
of  its  data  centers,  the  company  says. 

The  deal  provides  Google  with 
access  to  114  megawatts  of  wind 
power  at  a  fixed  price  over  the 
20-year  period,  said  Urs  Hoe- 
Izle,  Google  senior  vice  presi¬ 
dent  for  operations,  in  a  company 
blog  post.  The  predetermined 
rate  will  help  shield  Google  from  fluctuations  in 
energy  prices,  while  the  long-term  agreement  should 
encourage  investment  in  further  renewable  energy 
plants,  he  said. 

“This  is  a  case  where  buying  green  makes  business 
sense,”  Hoelzle  said.  He  didn’t  disclose  how  much 
Google  will  be  paying  for  the  energy,  however. 

Slow  road  to  broadband 

BETWEEN  14  million  and  24  million  U.S.  resi¬ 
dents  don’t  have  access  to  broadband  service, 
and  deployment  isn’t  happening  fast  enough,  a 
report  from  the  U.S.  Federal  Communications  Com¬ 
mission  concluded. 

Broadband  isn’t  being  rolled  out  to  unserved 
areas  in  a  timely  manner,  and  immediate  prospects 
for  deployment  to  U.S.  residents  without  service  are 
"bleak,”  the  FCC  said  in  the  broadband  deployment 
report,  released  last  week.  This  is  the  first  time,  since 
the  FCC  began  issuing  the  reports  in  1999,  that  the 
agency  has  concluded  that  broadband  isn’t  being 
deployed  fast  enough. 

“The  report  points  out  the  great  broadband  suc¬ 
cesses  in  the  United  States,  including  as  many 
as  290  million  Americans  who  have  gained 
access  to  broadband  over  the  past  decade," 
said  Julius  Genachowski,  the  FCC’s  chairman. 
“But  the  statute  requires  more.  It  requires  the 
agency  to  reach  a  conclusion  about  whether  all  —  not 
some,  not  most  —  Americans  are  being  served  in  a 
reasonable  and  timely  fashion.” 

Power-over-Ethernet  case 
zaps  Cisco 

NETWORK-1  SECURITY  Solutions,  an  acquirer  and 
licensor  of  intellectual  property,  says  it  has  settled 
its  Power-over-Ethernet  patent  infringement  case 
against  Cisco  and  five  other  companies. 

The  litigation  was  initiated  in  February  2008 
by  Network-1  against  Cisco  and  its  Linksys  divi¬ 
sion,  Foundry  Networks  (now  Brocade),  Extreme 
Networks,  Enterasys,  3Com  (now  HP),  Adtran  and 
Netgear. 


layer,  tcpcrypt  protects  legacy 
applications  and  provides  back¬ 
wards  compatibility  with  legacy 
TCP  stacks  and  middleboxes, 
the  groups  says.  The  technology 
also  provides  a  hook  for  integra¬ 
tion  with  application-layer 
authentication,  largely  obviat¬ 
ing  the  need  for  applications 
to  encrypt  their  own  network 
traffic  and  minimizing  the  need 
for  duplication  of  features. 
Finally,  tcpcrypt  minimizes  the 
cost  of  key  negotiation  on  serv¬ 
ers;  a  server  using  tcpcrypt  can 
accept  connections  at  36  times 
the  rate  achieved  using  SSL,  the 
researchers  say. 
tinyuri.com/352nlvt 
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Can  Twitter  beach 
the  Fail  Whale? 

FOLLOWING  A  slewofrecent 
outages,  Twitter  hopes  to 
improve  reliability  by  moving 
into  its  own,  custom-built  data 
center  later  this  year.  The  move 
probably  won’t  solve  all  the 
problems  but  it  should  help, 
especially  with  those  related 
to  its  fast-growing  user  base  — 
which  is  gaining  300,000  new 
users  a  day  this  year  on  average. 
“Keeping  pace  with  these  users 
and  their  Twitter  activity 
presents  some  unique  and  com¬ 
plex  engineering  challenges,” 
Twitter  said.  “Having  dedicated 
data  centers  will  give  us  more 
capacity  to  accommodate  this 
growth  in  users  and  activity 
on  Twitter.”  It  will  also  give 
Twitter  more  control  over  how 
its  networks  and  systems  are 
configured,  and  allow  it  to  make 
adjustments  more  quickly  as 


Flipboard’s 
iPad  app 

Flipboard  launchesiPad 
app  to  rush  of  users 
The  new  app  presents 
social  media  streams 
in  a  form  resembling  a 
magazine.  http://tinyurl. 
com/37ywfdb 


its  infrastructure  needs  change. 

tinyurl.com/3ym4nr2 

Peer  pressure: 
RIM  packs 
multimedia 
features  into 
new  OS 

UNDER  INCREASING  pres¬ 
sure  from  Apple  and  Google, 
Research  In  Motion  is  planning 
an  updated  operating  system 
with  improved  multimedia 
applications,  such  as  a  music 
library  that  displays  album 
art  and  lets  users  navigate 
through  their  collections  by 
swiping  through  an  on-screen 
carousel.  The  BlackBerry  6 
OS  will  also  offer  new  ways  to 
view  and  organize  photos.  For 
video  users,  Blackberry  6  aims 
to  make  it  easier  to  share  videos 
using  a  YouTube  uploader.  The 
BlackBerry  6  OS  should  appear 
on  phones  in  the  third  quarter. 
RIM  has  already  revealed  that 
the  software  will  include  a  Web- 
kit  browser,  a  new  user  interface 
and  new  social-networking 
features. 

tinyurl.com/2u  y9hwn 
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Cross-country  network 
Cross-town  support. 


Introducing  CenturyLink™  Business 


Century  Tel  and  EMBARQ  have  merged  — and  the  result  is 
CenturyLink,  delivering  top-tier  business  data  network 
solutions  to  customers  throughout  the  U.S.  You  can  count 
on  us  to  combine  a  state-of-the-art  national  network  with 
local  support  from  people  right  in  your  own  community. 


Partner  with  CenturyLink  and  make  sure  your  business  is 
Stronger  Connected""’  — across  country  and  across  town. 


Learn  more  at  centurylink.com/stronger 
or  call  1-866-345-0814. 


CenturyLink 
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TREND  ANALYSIS 


Is  open  source  Snort  dead?  Depends  who  you  ask 

Open  Information  Security  Foundation  says  it’s  so;  Snort’s  creator  disagrees 


BYELLENMESSMER 

IS  SNORT,  the  12-year-old  open-source  intru¬ 
sion  detection  and  prevention  system,  dead? 

The  Open  Information  Security  Founda¬ 
tion  (OISF),  a  nonprofit  group  funded  by  the 
U.S.  Department  of  Homeland  Security  (DHS) 
to  come  up  with  next -generation  open  source 
IDS/IPS,  thinks  so.  But  Snort’s  creator,  Mar¬ 
tin  Roesch,  begs  to  differ,  and  in  fact,  calls  the 
OISF’s  first  open  source  IDS/IPS  code,  Suri- 
cata  1.0  released  this  week,  a  cheap  knock-off 
of  Snort  paid  for  with  taxpayer  dollars. 

The  OISF  was  founded  about  a  year  and 
a  half  ago  with  $1  million  in  funding  from  a 
DHS  cybersecurity  research  program,  says 
Matt  Jonkman,  president  of  OISF.  He  says 
OISF  was  founded  to  form  an  open  source 
alternative  and  replacement  to  Snort,  which 
is  now  considered  dead  since  the  research  on 
what  is  supposed  to  be  the  next-generation 
version  of  Snort,  Snort  3.0,  has  stalled. 

“Snort  is  not  conducive  to  IPv6  nor  to 
multi-threading,”  Jonkman  says,  adding, 
“And  Snort  3.0  has  been  scrapped.” 

He  says  OISF’s  first  open  source  release 
Suricata  1.0  is  superior  to  Snort  in  a  number 
of  ways,  including  how  it  can  inspect  network 
packets  using  a  multi-threading  technology 
to  inspect  more  than  one  packet  at  a  time, 
which  he  claims  improves  the  chances  of 
detecting  attack  traffic.  Suricata  is  also  said  to 
support  IP  reputation  to  be  able  to  flag  traffic 
from  “nefarious  origins”  as  well  as  automated 
protocol  detection  to  automatically  identify 
the  protocol  used  in  a  network  stream. 

OISF  includes  nine  consortium  members, 
Kerio,  Bivio,  NitroSecurity  and  Breach  Secu¬ 
rity  Labs  along  with  a  number  of  other  individ¬ 
ual  code  contributors,  including  Ivan  Ristic. 

The  Suricata  open  source  code  is  available 
for  free  by  users  and  vendors,  Jonkman  says, 
although  OISF  is  asking  for  fees  when  Suri¬ 
cata  code  is  changed  to  accommodate  a  specific 
use.  “Some  vendors  want  to  make  changes  to 
make  it  work  really  well,”  Jonkman  says,  add¬ 
ing  this  usage  of  Suricata  would  lead  to  a  dif¬ 
ferent  commercial  licensing  structure. 

Suricata  is  being  positioned  as  a  replace¬ 
ment  for  a  presumably  dying  Snort.  Snort  was 
originally  created  12  years  ago  by  Roesch, CTO 
of  Sourcefire,  which  he  founded  in  2001  to 
commercialize  Snort,  while  also  keeping  the 
Snort  code  base  open  source. 

While  Sourcefire  had  done  modestly  well, 
Snort  open  source  has  endured  and  thrived 
with  spectacular  success,  having  today  about 


300,000  registered  users,  and  nearly  100 
vendors  that  integrate  Snort  into  their  own 
security  products. 

Roesch  didn’t  mince  words  in  describing 
what  he  thinks  of  OISF  and  Suricata,  code 
that  Sourcefire  engineers  have  examined. 

Any  suggestion  that  Snort  isn’t  suited  to 
IPv6  is  not  true,  he  says.  IPv6  is  required  by 
the  federal  government,  which  is  among  the 
many  users  of  Snort-based  products. 

And  about  Suricata’s  multi-threading  tech¬ 
nology,  it  seems  to  fail  to  deliver  anything  of 
substance  in  terms  of  per¬ 
formance,  Roesch  says.  “We 
looked  at  the  performance 
of  Suricata  and  they  talk 
about  how  important  multi¬ 
threading  is,  but  it’s  radically 
slower,”  he  says. 

Suricata’s  top  speeds  today 
may  be  slower  than  Snort’s. 

Jonkman  is  citing  Suricata 
at  8G  to  lOGbps  and  Roesch 
cites  Snort  at  50Gbps,  with 
both  acknowledging  a  lot  of 
range  due  to  platform  use. 

But  beyond  that,  Roesch 
says  Suricata  is  basically 
a  “sub-set  of  Snort’s  func¬ 
tionality  at  a  fraction  of  its 
performance.”  He  even  calls 
Suricata  a  “clone  of  Snort”  as 
it  uses  Snort  signatures.  The  OISF’s  descrip¬ 
tion  of  Suricata  does  include  how  to  use  Snort 
signatures  with  Suricata  and  transition  off  of 
the  Snort  platform. 

“They’ve  produced  a  clone  of  Snort  that 
performs  worse  at  taxpayer’s  expense,” 
Roesch  says.  “They  haven’t  advanced  IDS.” 

However,  Roesch  does  acknowledge  that 
Snort  3.0,  described  as  a  research  project 
to  test  new  detection  methods  to  take  better 
advantage  of  computing  power,  is  not  moving 
ahead  as  quickly  as  might  be  preferred.  How¬ 
ever,  he  adds,  no  one  should  draw  the  conclu¬ 
sion  that  Snort  is  dead. 

“They  want  Snort  to  be  dead,”  Roesch  says, 
adding  Snort  3.0  “is  not  discontinued.”  Addi¬ 
tions  and  updates  to  the  current  Snort  plat¬ 
form  are  done  weekly,  he  says. 

Nevertheless,  Jonkman  says  DHS  is  fund¬ 
ing  OISF  because  not  enough  innovation  is 
seen  in  the  IDS  industry,  adding  that  the  Air 
Force  has  been  testing  Suricata.  He  doesn’t 
claim  that  Suricata  1.0  is  the  final  word  from 
OISF,  and  in  fact,  some  code  revisions  are 
being  done  to  Suricata  1.0  this  week,  a  normal 


process  in  open  source  development. 

Vendors  that  don’t  have  open-source  roots 
are  keeping  an  eye  on  OISF  and  Suricata. 

Cisco,  a  large  provider  of  commercial  IPS 
products,  uses  a  proprietary  technology,  not 
Snort,  as  its  technical  foundation,  but  Rush 
Carskadden,  Cisco  IPS  product-line  man¬ 
ager,  says  the  company  is  aware  of  OISF  and 
is  closely  following  its  activities. 

“It’s  still  a  little  early  to  say  what  impact  it 
may  have  in  the  industry  or  the  IPS  market,” 
Carskadden  says,  adding  Cisco  already  uses 
multi-threading  in  its  IPS.  But 
he  applauded  OISF’s  work  to 
push  IDS/IPS  forward  in  an 
open  way  through  a  broad 
community  involvement. 

Some  analysts  are  waxing 
enthusiastic  about  OISF. 

“Snort  of  course  is  widely 
deployed,  especially  within 
academe  and  the  U.S.  federal 
government,”  says  Richard 
Stiennon,  chief  research 
analyst  at  consultancy  IT- 
Harvest.  “As  in  all  technolo¬ 
gies,  taking  a  fresh  look  at 
the  needs  and  re-starting  a 
framework  for  addressing 
those  needs  has  benefits, 
usually  in  reduced  overhead, 
and  streamlined  operations.  I 
believe  that  OISF  will  provide  that  fresh  look 
and  offer  an  alternative  to  Snort  that  is  free 
from  the  commercial  interests  of  Sourcefire. 

“Sourcefire  controls  the  intellectual  prop¬ 
erty  and  the  update  cycle  for  changes.  They 
use  the  install  base  of  Snort  to  market  their 
commercial  solutions,”  Stiennon  says.  “I  am 
not  saying  that  is  a  bad  thing  for  Snort  users 
but  it  is  limiting  to  the  overall  development  of 
threat  mitigation  technology  from  the  open 
source  community.” 

Some  Sourcefire  customers  say  they  are 
paying  attention  to  the  emerging  Snort-Suri- 
cata  rivalry. 

“It’s  hard  to  tell,  but  this  does  seem  to  be 
competing  with  Snort,”  says  Bill  O’Malley, 
senior  security  analyst  at  retailer  Lands’  End, 
which  uses  Sourcefire  IPS,  and  retains  Snort 
open  source  freeware  for  some  internal  use  as 
intrusion-detection  sensors. 

While  O’Malley  says  he  wants  to  see 
improvements  come  more  quickly  with  Snort, 
he  also  sees  a  vibrant  open  source  community 
around  Snort  that  continues  to  add  new  Snort 
rules.  ■ 


SNORT ...  HAS 
THRIVED  WITH 
SPECTACULAR 


SUCCESS,  HAVING 
TODAY  ABOUT 
300,000  REGIS¬ 
TERED  USERS 
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TECH  PRIMER 


►  Hypervisor,  from  pagel 

say  bare-metal  will  revolutionize  the  world  of 
corporate  PCs,  with  desktop  images  that  are 
secure,  portable,  and  offer  offline  access.  But 
the  technology  is  in  its  infancy  —  even  big 
players  such  as  Citrix  and  VMware  are  strug¬ 
gling  to  get  bare-metal  hypervisors  out  of  the 
conceptual  phase  and  into  production. 

This  article  will  explain  what  bare-metal 
hypervisors  are,  which  vendors  are  making 
them,  and  why  they  are  different  from  previ¬ 
ous  virtual  desktop  technologies 

What  is  a  bare-metal  hypervisor? 

The  bare-metal  hypervisor,  also  known  as  a 
Type  1  hypervisor,  is  virtualization  software 
that  is  installed  directly  onto  the  PC’s  hard¬ 
ware.  A  Type  1  hypervisor  controls  both  the 
hardware  and  one  or  more  guest  operating 
system.  A  machine  running  a  desktop  hyper¬ 
visor  could  run  multiple  operating  systems, 
but  there  are  benefits  even  when  only  one 
operating  system  is  required. 

How  is  this  different  than  existing 
types  of  desktop  virtualization? 

Today’s  client  hypervisors  —  such  as 
VMware  Player,  Parallels  Desktop  and  Win¬ 
dows  Virtual  PC  —  are  of  the  “Type  2”  variety, 
meaning  they  are  not  installed  directly  on 
the  machine’s  hardware.  Instead,  they  run 
within  the  computer’s  host  operating  system, 
allowing  guest  operating  systems  to  run  in  a 
third  layer  above  the  hypervisor  and  native 
OS.  While  Type  2  hypervisors  have  control 
over  the  virtual  desktop  images  installed  on 
the  computer,  the  underlying  hardware  is  still 
directly  managed  by  the  host  OS,  whether  it 
be  Windows,  Linux  or  Mac.  Type  2  desktop 
hypervisors  are  typically  used  by  IT  in  test 
and  development,  rather  than  for  business¬ 
wide  virtual  desktop  deployments,  Burton 
Group  analyst  Chris  Wolf  says. 

Virtual  desktops  can  also  be  created  without 
installing  hypervisors  onto  user  devices.  In  the 
server-hosted  model,  commonly  called  VDI, 
desktop  images  are  hosted  on  servers  inside 
the  data  center,  and  accessed  remotely  by  lap¬ 
tops,  desktops  and  thin  clients.  This  model  may 
involve  use  of  a  server  hypervisor,  but  the  desk¬ 
tops  would  need  only  a  method  for  accessing 
the  virtual  machines,  such  as  a  Web  browser. 

Which  vendors  make  bare- 
metal  desktop  hypervisors? 

Start-ups  Virtual  Computer  and  Neocleus  are 
shipping  bare-metal  hypervisors. 

Citrix  has  unveiled  a  test  version  of  its  bare- 
metal  hypervisor,  known  as  XenClient,  and 
says  major  PC  vendors  will  ship  new  desk¬ 
tops  with  the  hypervisor  pre-installed.  But  it’s 
not  clear  exactly  when  that  will  happen. 


Citrix’s  hypervisor  was  due  out  last  year, 
and  while  the  product  was  plagued  by  delays 
Citrix  is  still  ahead  of  rival  VMware,  which 
was  promising  a  hypervisor  last  year  and  now 
says  there  is  no  timeline  for  the  release. 

How  mature  is  the  technology  today? 

“It’s  not  robust  at  all,”  says  IDC’s  Ian  Song.  “I 
guess  that’s  the  short  answer.  The  long  answer 
would  depend  on  your  specific  use  case.  It’s 
really  a  very  niche  technology  at  this  point.” 

Song  says  the  most  mature  product  on  the 
market  is  Virtual  Computer’s  NxTop,  a  Xen- 
based  bare-metal  hypervisor  that  is  integrated 
with  an  extensive  set  of  management  tools. 

Song  and  other  analysts  agree  that  the  early 
Type  1  hypervisors  are  not  as  robust  as  the 
Type  2  hypervisors,  but  he  says  bare-metal 
could  become  the  tool  of  choice  for  client  vir¬ 
tualization  scenarios  within  12  to  18  months. 
A  similar  progression  was  seen  on  the  server 
front,  in  which  the  market 
has  shifted  from  Type  2  to 
Type  1  hypervisors. 

Citrix  and  VMware  are 
both  looking  to  shift  the 
bare-metal  market  into 
high  gear,  but  VMware 
has  acknowledged  that 
building  a  client  hypervisor  is  “not  an  easy 
computer  science  problem  to  solve.” 

Compatibility  with  PC  hardware  is  one 
issue.  But  the  problems  could  be  more  on  the 
business  than  the  technical  side,  Wolf  says. 

Convincing  OEM  vendors  such  as  HP, 
Dell  and  Lenovo  to  ship  a  device  with  a  bare- 
metal  client  hypervisor  pre-installed  is  tricky 
because  of  the  vendors’  relationships  with 
Microsoft,  he  says.  “If  I’m  adding  another 
layer  of  software,  Microsoft  is  going  to  ask 
OEMs  to  recertify  for  Windows  7,”  Wolf  says. 

Citrix  has  a  tight  partnership  with  Microsoft 
and  may  therefore  find  this  process  to  be  a  bit 
less  daunting  than  VMware,  which  has  a  some¬ 
what  antagonistic  rivalry  with  Microsoft. 

Even  for  Citrix,  Wolf  says  shipping  a  bare- 
metal  hypervisor  with  PCs  probably  won’t 
happen  until  the  first  quarter  of  next  year.  “If 
VMware  doesn’t  even  have  a  product  in  beta 
by  that  point,  you  would  have  to  say  VMware 
is  at  least  a  year  behind,”  Wolf  says. 

While  Virtual  Computer  and  Neocleus 
have  promising  technology,  they  are  still  in 
the  early  stages. 

What  are  the  benefits  of  bare-metal 
hypervisors? 

Virtual  Computer’s  Doug  Lane  argues  that, 
with  the  right  management  tools,  client 
hypervisors  will  deliver  the  same  benefits 
as  server-hosted  desktops  without  requiring 
major  data  center  upgrades. 

“You’re  not  going  to  save  money  by  replacing 


PCs  with  servers,”  Lane  says.  Client  hypervi¬ 
sors  “can  deliver  the  same  benefits  without 
turning  the  whole  PC  model  on  its  head.” 

Like  VDI,  client  hypervisors  can  be  coupled 
with  management  tools  that  make  it  easier  to 
distribute  patches  and  updates,  and  replace 
an  employee’s  desktop  in  the  event  that  it  gets 
lost  or  damaged.  Plus,  running  the  desktop 
locally  eliminates  performance  lags  caused 
by  latency  and  allows  more  offline  access. 
Once  the  technology  is  more  mature,  Type 
1  desktop  hypervisors  should  allow  faster 
performance  than  Type  2,  because  running  a 
hypervisor  on  top  of  a  host  operating  system 
creates  another  layer  of  overhead. 

Security  is  one  of  the  main  arguments  in 
favor  of  a  Type  1  hypervisor.  Although  the 
security  model  hasn’t  been  perfected,  in  theory 
the  bare-metal  hypervisor  will  provide  greater 
isolation  between  desktop  images,  while  elimi¬ 
nating  the  attack  surface  of  the  host  operating 
system.  Neocleus  has 
argued  that  bare-metal 
hypervisors  let  each  oper¬ 
ating  system  run  in  a  pro¬ 
tected  “bubble,”  which,  if 
infected,  could  be  deleted, 
preserving  the  integrity  of 
the  machine  as  a  whole. 

Another  argument  in  favor  of  bare-metal  is 
that  it  will  enable  bring-your-own-PC  scenar¬ 
ios,  in  which  an  employee  has  two  desktops, 
one  for  personal  use  and  another  for  corporate 
use.  The  employee  can  easily  switch  between 
personal  and  corporate  environments,  while 
ensuring  that  data  from  personal  applications 
don’t  impact  corporate  systems. 

What  are  the  cons? 

Type  2  hypervisors,  are  more  mature  and  eas¬ 
ier  to  deploy  than  their  bare-metal  counter¬ 
parts,  according  to  Song.  Today’s  bare-metal 
technology  also  does  not  work  with  Macs,  and 
typically  does  not  work  with  64-bit  operating 
systems,  he  says.  (Windows  7  comes  in  both 
32-  and  64-bit  versions).  While  it’s  technically 
possible  to  install  bare-metal  hypervisors  on 
Macs,  “licensing  is  a  gray  area,”  Lane  says. 

Calculating  TCO  with  a  bare-metal  proj¬ 
ect  is  also  a  challenge,  as  it  is  with  any  virtual 
desktop  deployment.  While  a  client  hypervisor 
might  deliver  management  efficiencies,  and 
limit  the  need  for  major  data  center  upgrades, 
the  technology  would  prevent  companies  from 
replacing  PCs  with  less  expensive  thin  clients. 

Security  is  still  a  concern  with  bare-metal 
hypervisors,  Wolf  says.  Although  the  technol¬ 
ogy  may  provide  security  benefits  in  the  long 
run,  today  “it’s  a  work  in  progress,”  he  says. 
More  must  be  done  to  ensure  complete  isola¬ 
tion  of  desktop  images,  and  integration  between 
software  like  a  McAfee  security  appliance  and 
Citrix’s  XenClient  isn’t  there  yet,  he  says.  ■ 


//  You’re  not 
II  going  to  save 
money  by  replacing 
PCs  with  servers.” 

DOUG  LANE,  VIRTUAL  COMPUTER 
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we  have  the  normal  first  quarter  challenges 
from  shipments  and  logistics.  Second  quarter 
things  are  feeling  pretty  good,  and  the  litmus 
test  is  ahead  of  us,”  CEO  Kevin  Kennedy  told 
Network  World. 

That  test  is  whether  the  company  can  nail 
down  significant  long-term  commitments 
from  Nortel  telephony  and  contact  center 
customers  and  lock  them  into  a  migration 
toward  Avaya  UC.  At  the  heart  of  that  chal¬ 
lenge  is  convincing  Nortel  customers  to  buy 
Avaya  Aura,  the  company’s  flagship  commu¬ 
nications  server.  With  Aura  customers  can 
step  into  IP  telephony,  glue  together  dispa¬ 
rate  VoIP  systems  and  lay  the  foundation  for 
adopting  UC. 

Kennedy  says  Aura  can  support  Session 
Initiation  Protocol  trunking  immediately  to 
bring  cost  savings  to  corporations  and  over 
time  bring  increased  productivity  that  will 
save  money  long-term  and  might  have  a  lon¬ 
ger  return  on  investment. 

He  acknowledges  that  getting  Nortel  com¬ 
munications  customers  interested  in  sticking 
with  Avaya  as  they  make  plans  for  transitions 
to  UC  is  key.  The  company  is  trying  to  draw 
them  in  with  a  flurry  of  announcements 
about  new  products,  product  enhancements 
and  integrations  with  Nortel  products.  “This 
period  right  now  is  about  bringing  a  lot  of 
innovation  to  market.  Now  the  question  will 
be,  are  our  customers  as  excited  about  it  as  we 
are?”  he  asks. 

The  stakes  are  high  since  just  17%  of 
Avaya  accounts  overlap  with  Nortel’s,  and 
competitors  are  gunning  for  the  rest.  “These 
customers  are  a  pretty  loyal  base,”  says  Zeus 
Kerravala,  an  analyst  with  Yankee  Group. 
“But  they’re  loyal  to  Nortel,  not  Avaya.”  His¬ 
torically,  until  Cisco  entered  the  VoIP  market, 
very  few  telephony  customers  shifted  from 
one  vendor  to  another,  Kerravala  says,  and 
the  recent  turmoil  of  Nortel’s  bankruptcy 
and  Avaya ’s  purchase  of  its  telephony  busi¬ 
ness  puts  Nortel  customers  in  play. 

Surprisingly,  the  purchase  of  Nortel  by 
Avaya  didn’t  result  in  Avaya  catapulting  to 
the  top  of  the  IP  telephony  market  as  some 
analysts  expected.  With  Nortel  and  Avaya 
ranking  solidly  among  the  top  five  for  years 
with  very  nearly  equal  shares  of  the  market 
led  people  to  think  combining  the  two  would 
result  in  a  formidable  lead  for  Avaya,  says 
Matthius  Machowinski,  an  analyst  with 
Infonetics.  “We  expected  them  to  be  ahead  of 
everyone  else,”  he  says. 

But  after  the  purchase  Nortel’s  business 
continued  to  suffer  and  purchases  in  general 
dropped  because  of  the  recession,  he  says. 
Vendors  attempts  to  lure  more  sales  by  drop¬ 
ping  prices  further  eroded  revenues,  he  says. 


Avaya’s  push  for 
communications 
dominance 

Avaya  has  been  on  a  years-long 
journey  to  transform  from  a  PBX 
vendor  to  a  communications 
software  giant.  Here  is  a  time¬ 
line  of  significant  events  along 
the  way  and  some  projections 
into  the  future. 

October  2007  -  Taken  private  by 
Silver  Lake  and  TPG  for  $8.3  billion, 
relieving  stock  market  pressures 

July  20, 2009  -  Puts  in  a 
preliminary  bid  of  $475  million 
for  Nortel’s  enterprise  division 

Dec.  18, 2009  -  Closes  Nortel 
deal  for  $900  million 

Jan.  19, 2010  -  Announces 
road  map  for  integrating  and 
supporting  Nortel  gear 

April  2010  -  Nortel  Agile 
Communication  Environment 
(ACE)  supports  Avaya 
Communication  Manager. 

October  2010  -  10th  anniversary 
as  an  independent  company 

March  2011  -  Faces  "litmus 
test"  on  success  of  Nortel 
integration,  CEO  says 


©  Go  online  to  read  Avaya  CEO  on 
Cisco,  Microsoft.  Facebook,  Twitter  and 
how  the  company  plans  win  -over  Nortel 
customers,  tinyurl.com/28uuqku 


Overall,  IP  telephony  sales  dropped  20% 
to  30%,  but  Nortel’s  dropped  50%  he  says. 
Meanwhile,  Cisco  proved  a  tough  competitor 
coming  in  with  a  strong  first  quarter  this  year 
and  hanging  close,  Machowinski  says. 

“These  Nortel  customers  are  up  for  grabs,” 
Kerravala  says.  “If  Avaya  is  able  to  upgrade 
them  right  now,  likely  they  will  own  them  for 
a  very  longtime.” 

Kennedy  says  that  his  company  represents 
stability  to  Nortel  customers  who  were  trau¬ 
matized  by  the  Nortel  bankruptcy,  waiting 
for  months  to  find  out  whether  the  products 
they  had  installed  would  be  supported,  let 
alone  upgraded  as  technology  moves  for¬ 
ward.  Avaya’s  purchase  of  the  assets  gave 
them  a  financially  stable  company  to  deal 
with  that  promised  product  support  and  a 
migration  path  to  new  features  and  products 


that  doesn’t  require  ripping  out  old  gear  and 
starting  over,  he  says. 

“If  my  worst  fear  was  that  everything  was 
going  to  go  away  and  that  I’m  going  to  have 
a  problem,  that  was  instantaneously  allevi¬ 
ated,”  he  says.  “We  actually  engendered  a  fair 
amount  of  good  feeling  from  those  decisions 
that  we  made  of  support  and  investment.” 

While  that  upgrade  starts  with  voice,  the 
real  goal  is  upgrading  them  over  time  to  UC, 
which  blends  all  forms  of  real-time  communi¬ 
cations  such  as  voice,  video,  SMS  and  instant 
messaging. 

These  features  are  being  melded  into  Avaya 
contact  center  features,  enhancing  what  call 
agents  can  do  and  boosting  their  productivity, 
but  without  being  pushed  as  UC.  For  example, 
Avaya’s  platform  enables  individual  agents  to 
handle  a  voice  call  plus  five  other  communi¬ 
cations  links  at  the  same  time  either  to  multi 
task  among  many  customers  or  to  draw  more 
parties  into  a  particular  customer  session  in 
order  to  resolve  requests. 

This  type  of  innovation  is  being  led  by 
Avaya  Labs,  an  800-person  division  of  the 
company  that  acts  “like  a  start-up  that  wants 
to  be  acquired  by  Avaya,”  says  Brett  Shockley, 
the  vice  president  who  heads  up  the  labs.  He 
wants  to  aggressively  grab  the  most  interest¬ 
ing  software  technology  the  labs  is  working 
on  and  herd  it  as  quickly  as  possible  into 
new  products  if  it  shows  potential  —  what  he 
calls  crossing  the  chasm  from  applications  to 
products. 

The  model  he  uses  includes  a  customer 
proof-of-concept  stage  where  select  custom¬ 
ers  receive  software  early  on  and  try  it  out  to 
determine  “whether  it’s  relevant  or  if  it’s  just 
geeks  playing  with  technology,”  Shockley 
says.  This  gets  these  potential  product  ideas 
in  customer  hands  a  year  or  two  earlier  than 
previously,  quickly  weeding  out  the  duds  and 
accelerating  the  development  of  the  winners 
that  will  go  on  to  become  actual  products. 
Those  ideas  that  have  potential  are  brought 
to  market-quality  interface  and  deployed  in 
customer  networks  soon  thereafter  before 
being  officially  launched  and  supported  by 
the  Avaya  sales  force. 

This  is  a  departure  from  secrecy  that  for¬ 
merly  shrouded  the  lab’s  work,  getting  ideas 
out  quickly  to  customers  and  getting  feed¬ 
back,  Shockley  says. 

Some  of  the  things  the  labs  has  been  work¬ 
ing  on  include  a  virtual  reality  environment 
gleaned  from  the  Nortel  acquisition  that  can 
be  used  as  a  collaboration  tool  for  training 
and  as  a  Web  sales  tool,  as  is  the  case  with  the 
Lenovo  Web  site,  he  says. 

Kennedy  is  putting  pressure  on  the  com¬ 
pany  to  deliver  quickly,  and  based  on  his  track 
record  at  Cisco  overseeing  mergers,  he  stands 
a  good  chance  of  success,  Kerravala  says.  ■ 
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Microsoft’s  cloud  strategy:  ‘Feature  parity’ 


BY  JON  BRODKIN 

MICROSOFT  OFTEN  uses  the  phrase  “fea¬ 
ture  parity"  to  describe  its  vision  of  providing 
cloud  computing  services  that  closely  repli¬ 
cate  the  capabilities  customers  can  already 
get  by  installing  Microsoft  software  inside 
their  firewalls.  After  all,  Microsoft  is  “all  in” 
for  the  cloud,  as  Steve  Ballmer  says. 

While  Microsoft’s  hosted  Exchange  and 
SharePoint  will  achieve  most  of  the  desired 
feature  parity  within  the  next  year,  Microsoft 
admits  it  has  no  plans  today  to  provide  the 
same  parity  with  Office  Web  Apps,  the  Web- 
based  versions  of  Word,  Excel,  PowerPoint 
and  OneNote. 

Office  Web  Apps,  released  in  June,  provides 
a  “high-fidelity  viewing  experience,”  but  only 
limited  editing  capabilities,  says  Evan  Lew, 
senior  product  manager  for  Microsoft  Office. 

Lew  blames  the  disparity  on  the  limitations 
of  current  Web  browsers.  With  the  addition  of 
HTML5  “the  lines  [between  PC  and  browser] 
may  start  blurring,”  he  continues,  but  as  of 
“today,  there  are  performance  reasons  why 
editing,  video  and  PowerPoint  is  something 
that  is  a  much  better  experience  in  the  client 
than  in  the  browser.” 

Microsoft  touts  the  ability  to  import  Office 
documents  into  Office  Web  Apps  without  los¬ 
ing  formatting  —  a  supposed  advantage  over 
Google  Apps  —  but  editing  scenarios  like 
inserting  charts  or  pivot  tables  into  Excel  and 
editing  videos  require  the  horsepower  of  the 
PC  and  native  desktop  client.  Lew  says. 

Microsoft  is  meeting  the  challenge  from 
Google  Apps  by  providing  some  online  capa¬ 
bilities,  but  likely  doesn’t  want  to  give  busi¬ 
nesses  a  completely  Web-based  alternative  to 
replace  the  more  expensive  Office,  Forrester 
Research  analyst  Sheri  McLeish  said. 

“They’re  walking  a  very  fine  line,”  McLeish 
says.  “While  they’re  nervous  and  worried 
[about  Google  Apps],  they’re  not  nervous 
and  worried  enough  to  dramatically  reduce 
the  cost  of  Office.  They’re  delicately  managing 
the  pricing  to  protect  their  margins.” 

Regular  Office  licenses  give  customers 
rights  to  use  Web  Apps,  but  a  full-fledged 
cloud  offering  “is  not  going  to  happen  in 
2010,”  McLeish  says. 

Things  are  a  bit  different  on  the  hosted 
Exchange  and  SharePoint  front,  at  least 
according  to  Microsoft’s  spokespeople. 

Formally  known  as  BPOS,  the  Business 
Productivity  Online  Standard  Suite,  Micro¬ 
soft’s  hosted  Exchange  and  SharePoint  is  still 
running  on  the  2007  servers.  But  a  planned 
upgrade  to  the  2010  servers  will  erase  most  of 


the  feature  differences  between  the  hosted  and 
on-premise  versions,  according  to  Microsoft. 

The  largest  cloud  customers  have  received 
the  2010  upgrade  already,  a  broader  preview 
will  be  available  later  in  2010,  and  full  general 
availability  is  expected  in  2011. 

Upgrades  in  2010  server  rollout  that  will 
bring  BPOS  closer  to  feature  parity,  include 
getting  voice  mails  in  e-mail  in-boxes,  role- 
based  access  controls,  single-sign-on  between 
on-premise  and  cloud,  and  the  ability  to 
upload  custom  code  to  SharePoint  Online. 

“We’re  working  toward  a  goal  we  call  ser¬ 
vice  parity,”  says  John  Betz,  director  of  product 
management  for  Microsoft  Online  Services. 

Customization  is  limited  today,  because  the 
2007  servers  don’t  fully  embrace  the  concept 
of  multi-tenancy,  Betz  says.  With  the  2010 
rollout,  customers  will  have  access  to  the  My 
Sites  feature,  which  lets  them  run  code  in  a 
sandbox,  a  separate  process  that  has  limited 
access  rights  and  wouldn’t  be  able  to  take 
down  an  entire  server  farm. 

Not  every  feature  in  BPOS  will  be  exactly 
the  same  as  the  on-premise  version,  however. 
For  example,  BPOS  support  for  data  protected 
by  International  Traffic  in  Arms  Regulations 
(ITAR)  is  available  only  for  government  agen¬ 
cies.  Also,  customers  need  their  own  PBX  sys¬ 
tem  when  they  integrate  voice  capabilities 
with  Office  Communications  Online,  because 
of  network  latency  issues. 

Another  BPOS  limitation,  mentioned  in  a 
recent  Microsoft  blog,  is  lack  of  support  for 
the  Office  2003  client. 

“We  won’t  achieve  complete  feature  par¬ 
ity,”  because  certain  processes  need  to  run  on 
a  customer’s  own  servers,  Betz  says. 

In  addition  to  BPOS,  there  are  other 


examples  of  Microsoft  trying  to  provide  simi¬ 
lar  functionality  in  the  cloud  as  it  does  in  pack¬ 
aged  software.  The  next  version  of  Microsoft’s 
CRM  product  will  let  IT  customize  their  CRM 
deployments  in  the  cloud  the  same  way  they 
can  on-premise,  for  example  with  complex 
.Net  programs,  says  Brad  Wilson,  general 
manager  of  Microsoft’s  CRM  business. 

Why  does  BPOS  get  a  better  “feature  par¬ 
ity”  treatment  than  Office  Web  Apps?  With 
BPOS,  Microsoft  is  operating  the  backend 
servers  on  a  customer’s  behalf,  in  the  cloud, 
in  much  the  same  way  customers  would  oper¬ 
ate  the  servers  themselves. 

“With  SharePoint,  the  SharePoint  naviga¬ 
tion  experience  manifests  itself  in  the  browser 
whether  it’s  on-premise  or  hosted  in  Micro¬ 
soft  [data  center],”  Lew  notes. 

Tim  O’Brien,  senior  director  of  Microsoft’s 
Platform  Strategy  Group,  recalls  showing 
BPOS  to  a  customer  at  a  conference: 

“He’s  looking  somewhat  underwhelmed 
during  the  demo,  and  he  shrugged  his  shoul¬ 
ders  and  he  said  ‘it’s  just  SharePoint.’  But 
that’s  exactly  the  point.  Your  investment  in 
SharePoint  moves  forward.” 

But  Office  Web  Apps,  which  requires  a 
SharePoint  2010  back  end,  isn’t  likely  to  offer 
the  same  functionality  as  Office  on-premise 
anytime  soon.  Although  Lew  promises 
improvement,  he  says  it’s  too  early  to  say  what 
features  will  be  added.  Complete  replication 
of  features  across  the  online  and  on-premise 
versions  of  Office  is  not  being  promised  by 
Microsoft,  at  least  today. 

“We  don’t  really  see  Office  Web  Apps  as  a 
replacement  scenario,”  Lew  says.  “It’s  really 
more  of  a  companion  for  people  who  already 
use  Office.”  ■ 
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Should  you  even  look  at  Windows  Phone  7? 


BURNING,.  UHIDd  ETCC 
QUESTIONS  I  WW  I  If  Cl  LLOO 

Tempting  though  it  is,  “How  do  I  ‘fix’  my  iPhone  4  antenna?”  is  not  among  our  cur¬ 
rent  crop  of  burning  questions.  This  year,  the  questions  we  chose  —  based  on  our 
own  reporting  coupled  with  suggestions  from  IT  professionals,  industry  analysts 
and  vendors  —  broadly  focus  on  two  continually  changing  areas:  the  accelerating  shift 
of  enterprise  Wi-Fi  networks  toward  large-scale,  dense,  mission-critical  deployments; 
and  the  spread  of  sophisticated,  personal  mobile  devices  seeking  access  to  the  Internet 
and  to  corporate  networks.  Here  are  the  questions,  and  for  much  fuller  answers,  head 
online  to:  tinyurl.com/3xxgff 

How  can  enterprise  WLANs  manage  the  crush  of  bandwidth 
demand  from  mobile  devices  and  multimedia  applications? 

Multimedia  and  mobility  are  part  of  the  mounting  pressure  on  corporate  Wi-Fi  networks. 
Adopting  802. lln  is  only  one  step  needed  to  create,  sustain  and  grow  highly  reliable 
WLANs.  Also  needed:  back-end  scaling  of  services  such  as  RADIUS  and  DHCP. 

Is  Sprint  losing  its  WiMAX/4G  gamble? 

Not  yet,  but  LTE  has  been  formally  embraced  as  the  future  of  cellular  wireless  for  nearly 
all  U.S.  carriers.  Sprint  and  its  wholesale  network  partner  Clearwire  are  deploying 
WiMAX-based  data  services  as  fast  as  they  can  to  usher  in  the  4G  era. 

How  can  employee-owned  mobile  devices  be  secured  and  managed? 

The  Homogenization  Mandate  —  all  users  being  required  to  use  a  company-standard 
mobile  device  —  no  longer  rules,  as  individuals  buy  the  phones  they  want,  and  use  them 
in  work  and  play.  Policies,  enforcement  mechanisms,  legal  agreements  and  enterprise- 
owned  agents  running  on  employee-owned  smartphones  create  a  framework  for  protect¬ 
ing  enterprise  data,  while  supporting  employee  technology  choices  and  productivity. 

What’s  the  enterprise  impact  of  carriers’  capped”  data  plans  for  3G? 

In  2010,  AT&T  ended  the  unlimited  data  plans  for  new  subscribers.  And  both  AT&T  and 
Verizon  have  said  their  LTE  data  services  will  also  be  tiered  -  to  send  and  receive  more 
data,  you  pay  more.  That’s  a  big  change  for  companies  that  have  to  foot  the  bill,  for  users 
who  have  to  be  more  responsible  and  accountable  for  their  use,  and  even  for  application 
developers,  who  have  to  be  smarter  about  using  data  over  wireless  connections. 

How  can  wireless  and  wired  security  be  brought  together? 

In  the  past,  WLANs  often  were  either  secured  separately  from  the  wired  infrastructure  or 
treated  as  entirely  untrustworthy  by  default.  But  increasingly,  mobility  is  less  a  privilege 
for  a  subset  of  enterprise  users  and  more  an  expectation  for  most,  if  not  all,  of  them. 
Coordinating  and  integrating  separate  realms  is  taking  on  new  urgency  for  enterprise  IT. 

How  are  large-scale,  dense  Wi-Fi  networks  affecting  radio  management? 

Over  the  past  12  months,  WLAN  vendors  have  been  adding  and  improving  tools  for 
radio  frequency  monitoring  and  management.  And  the  IEEE  is  preparing  specifications 
to  make  this  more  transparent  and  effective. 


BY JOHN  COX 

WINDOWS  PHONE  7  is  shaping  up  as  the 
most  innovative  mobile  UI  since,  well,  since 
the  iPhone  introduction  3  years  ago. 

In  July,  Microsoft  released  for  developers 
the  “Technical  Preview”  version  of  WP7, 
along  with  the  first  prototype  handsets.  The 
early  reviews,  from  a  user  viewpoint,  cor¬ 
roborate  many  positive  things  that  develop¬ 
ers  have  been  discovering  since  they  got  their 
hands  on  the  first  developer  release  in  March. 
The  first  handsets,  from  LG,  Samsung,  Asus 
and  others,  are  expected  to  be  unveiled  this 
fall,  along  with  carrier  service  plans. 

Windows  Phone  7  is  not  a  copy  of  the  early 
iPhone  OS.  Microsoft  set  out  to  re-create  the  UI 
around  the  users,  for  a  device  that’s  a  “phone, 
not  a  PC,”  in  the  company’s  new  mantra.  Micro¬ 
soft  seems  to  have  done  that  successfully. 

The  key  element  in  Microsoft’s  approach  is 
the  creation  of  a  UI  that’s  both  intelligible  and 
intelligent:  the  result  is  what  Microsoft  calls 
“integrated  experiences”  in  which  tasks  are 
combined  smoothly  and  smartly  to  help  you 
easily  do  what  you  want. 

For  the  enterprise,  this  will  be  especially 
apparent  in  one  of  these  integrated  locations: 
the  Office  Hub,  which  features  a  suite  of  mobi¬ 
lized  versions  of  Microsoft  Office  applications 
such  as  Word;  tight  integration  with  Micro¬ 
soft  Exchange  e-mail,  calendar  and  contacts; 
and  a  native  application  (instead  of  a  Web 
interface),  called  SharePoint  WorkGroup  Cli¬ 
ent,  to  support  SharePoint  documents  offline 
and  sync  with  the  server. 

“If  Microsoft  Office  and  Exchange  [and 
SharePoint]  are  principal  products  in  use  in 
your  organization,  there’s  an  excellent  chance 
of  maximal  interactivity  between  the  two 
[with  Windows  Phone  7],”  says  Tom  Hender¬ 
son,  managing  director  of  ExtremeLabs  and  a 
member  of  Network  World’s  Test  Alliance. 

“Given  all  their  integration  points,  with 
other  Microsoft  platforms  like  Office,  Share- 
Point,  Exchange,  Azure,  I  would  not  discount 
the  potential  of  what  Microsoft  can  offer  a 
corporate  environment,”  says  Philippe  Win- 
throp,  managing  director  of  The  Enterprise 
Mobility  Foundation. 

But  does  WP7  offer  enough  for  users  and 
companies  not  fully  committed  to  the  Micro¬ 
soft  infrastructure?  “It’s  not  at  all  clear  that 
WP7  will  have  any  features  that  compel  the 
non-core  audience  to  consider  the  platform 
as  an  alternative  to  Linux,  BlackBerry  and 
iPhone,”  says  Craig  Mathias,  principal  with 
Farpoint  Group,  a  wireless  consulting  firm, 
and  a  Test  Alliance  member.  “Windows 


mobile  (using  the  term  generically  here)  is 
way,  way  behind  and  has  significant  cost  dis¬ 
advantages  for  handset  OEMs.” 

Mobility  consultant  Jack  Gold  says  the 
existing  crop  of  third-party  and  homegrown 
enterprise  applications  for  the  older  Win¬ 
dows  Mobile  OS  will  have  to  be  re-architected 
and  to  some  degree  at  least  rewritten.  It  might 
make  more  sense  to  do  that  work  for  Android 


or  iPhone,  the  market  leaders,  he  says.  But 
neither  of  them  yet  has  robust  security 
(iPhone  largely  relies  on  Microsoft  Exchange 
ActiveSync  to  piggyback  on  Exchange  protec¬ 
tions),  and  Microsoft  hasn’t  yet  fully  disclosed 
its  security  model. 

Unanswered  questions?  Yes.  Challenges  for 
both  Microsoft  and  the  Enterprise?  Yes.  But 
Windows  Phone  7  is  worth  looking  at.  ■ 
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Android  and  apps: 
Some  favorites 


he  more  I  use  the  HTC  Incredible, 
the  more  I  like  it.  And  the  thing  that 
really  makes  the  Incredible,  er,  incred¬ 
ible  is  its  operating  system.  Android. 
As  I’m  sure  you  must  know  by  now. 
Android  was  developed  by  Google,  and 
is  open  in  a  way  that  the  iPhone’s  iOS 
operating  system,  isn’t.  A  consequence  of  this  open¬ 
ness  is  that  third-party  Android  applications  can  eas¬ 
ily  get  to  market  in  contrast  to  Apple’s  rather  random 
iPhone  application  approval  process. 


*  fwi 

Mark  Gibbs'  Gearhead 


It’s  worth  noting  that  both  Android  and 
iOS  have  a  “kill  switch”  that  allows  the  remote, 
global  erasure  of  applications  the  companies 
deem  unfit  for  their  platforms.  I  dislike  this 
concept  as  it  could  be  abused  by  both  the  ven¬ 
dors  and  by  hackers.  To 
give  Google  its  due,  devel¬ 
opers  were  told  up-front 
about  the  existence  and 
details  of  the  kill  switch 
while  Apple  has  always 
been  cagey  and  unclear 
on  the  topic.  Google  has 
actually  used  this  facil¬ 
ity  once  but  it  did  so  in  a 
transparent  manner  and 
for  a  good  reason. 

That  said,  as  much  as 
many  of  us  dislike  this  god¬ 
like  power,  given  that  nei¬ 
ther  OS  has  any  real  safe¬ 
guards  against  malicious 
applications  there  is  an 
arguable  need  for  a  kill  switch  as  the  ultimate 
safeguard  against  a  serious  rogue  program. 

Are  the  Google  and  Apple  kill  switches  in 
Android  and  iOS  a  good  thing? 

Anyway,  the  more  I’ve  explored  the  apps 
available  in  the  Android  Market,  the  more 
impressed  I’ve  become  with  what  third-party 


developers  are  doing. 

Here’s  a  couple  of  my  favorite  free  Android 
apps:  There’s  Ulysse  Gizmos  published  by 
Binary  Toys.  This  outstanding  utility  delivers 
beautifully  rendered  tools  that  include  a  com¬ 
pass,  GPS  monitor,  bubble 
level,  inclinometer  and 
magnetometer. 

My  next  Android 
application  pick  is  WiFi 
Analyzer  published  by 
Farproc.  This  tool  detects 
activity  in  the  Wi-Fi 
spectrum  and  displays 
a  real-time  channel 
strength  graph,  a  graph 
of  channel  activity  over 
time,  a  rated  listing  of 
channel  strength,  a  list 
of  access  points,  or  a 
signal  strength  meter.  I 
found  this  application 
invaluable  when  I  was 
setting  up  a  Wi-Fi  network  as  it  was  far  easier 
for  a  quick  check  than  other  PC-based  tools 
because  it’s  always  in  my  pocket.  WiFi  Ana¬ 
lyzer  gets  a  rating  of  5  out  of  5. 

So,  wouldn’t  it  be  great  to  be  able  to  build 
Android  applications  easily?  Currently,  this 
►  See  Gearhead, page  17 


IT  asked 
and  answered 

Ron  Nutter  tackles  your 
tough  tech  questions  at 

tinyurl.com/yg2o434 


zz  My  computer  has  many  dupli- 
EE  cate  files,  including  pictures 
and  music.  Is  there  a  way  to 
EE  find  all  duplicates  and  delete 
r:  them  at  the  same  time? 

~  ©  There  are  several  choices 

E~  available.  Look  at  www.easy- 

EE  duplicatefinder.com/,  http:// 

duplicatefilessearcher.net/, 
zz  andwww.moleskinsoft.com/to 
EE  list  a  few  of  the  options.  They 
EE  all  do  pretty  much  the  same 
~  thing.  One  thing  to  think  about 
EE  is  looking  for  a  solution  that  is 
=  available  on  multiple  OSs  so  you 
zz  can  do  file  cleanup  on  Windows 
zz  today,  a  Mac  tomorrow  and  Linux 

EE  the  day  after.  If  you  end  up  doing 
EE  some  tech  support  for  your 
EE  friends  like  we  all  seem  to  do, 

EE  having  one  tool  that  can  operate 
EE  on  multiple  OSs  can  be  handy. 

E~  I  am  preparing  for  CCENT,  and 
EE  I  need  to  find  some  reading 
=  materials.  Any  suggestions  ? 

EE  ©  I  would  recommend  Cisco 

EE  Press  CCNA  Self  Study  Guide 

EE  ■  http://amzn.to/ajCuBL.  This 

zz  gets  you  the  material  for  both 

rr  CCNA  exams.  I  would  also  get  a 

E~  copy  of  Paul  Browning’s  CCNA 
EE  simplified  offering  -  http://bit. 

EE  ly/daapS8.  This  product  has 

EE  an  excellent  section  on  math 
EE  that  helped  me  get  through 

r :  the  CCNA  exam.  I  would  also 

—  suggest  Cisco's  Education  Sup- 

EE  port  Community  -  http://bit. 

EE  ly/cln3IM.  This  will  be  a  good 
EE  source  of  study  aids  that  others 
EE  have  used  and,  more  importantly, 
EE  will  enable  you  to  talk  with  peers 
~  on  problems  they  are  running 

—  into.  There  are  also  study  groups 
~  that  are  available  on  this  site. 


The  more  I've 
explored  the 
apps  available  in 
the  Android  Mar¬ 
ket  the  more 
impressed  I’ve 
become. 
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Zeo  tracks  your  sleep 


Keith  Shaw’s 
Cool  Tools 


THE 

SCOOP 


Zeo  personal 
sleep  coach 

by  Zeo,  about  $200  ($300  if  you 
subscribe  to  coaching  service) 


►  What  it  is:  Usually  when  I  fall  asleep  test¬ 
ing  a  gadget  it’s  not  a  good  sign,  but  in  this 
case  falling  asleep  is  part  of  the  test.  The  Zeo 
system  includes  an  alarm  clock  combined 
with  a  headband  with  sleep  sensors  and 
wireless  transmitter.  The  system  tracks  your 
sleep  patterns  during  the  night,  noting  when 
you  are  awake,  in  light  sleep,  deep  sleep  or 
REM  (dreaming)  sleep,  and  for  how  long. 
When  you  wake  up,  the  system  gives  you 

a  ZQ  score,  and  gives  you  data  on  how  long 
you  slept  in  those  different  modes.  Sleep 
data  is  stored  on  an  SD  card,  which  can  be 
uploaded  to  the  myZeo  Web  site,  which  also 
lets  users  create  a  sleep  journal  to  track  sleep 
patterns.  This  device  is  an  easy-to-use  way  to 
discover  the  types  of  sleep  you’re  getting  and 
for  how  long. 

►  Why  it’s  cool:  The  headband  attaches 
easily  and  doesn’t  disrupt  you  during  your 
sleeping  periods.  When  you  are  ready  to 
fall  asleep  you  put  the  headband  on,  and  the 
system  immediately  starts  tracking  your 
“time  to  Z”,  and  then  notes  the  different  modes 
of  sleep.  The  headband  has  a  good  wireless 
range  as  well  —  during  my  tests  I  had  to  leave 
the  bedroom  to  take  care  of  a  crying  baby,  and 
the  headband  didn’t  lose  the  connection  with 
the  Zeo.  When  you  wake  up  the  next  morn¬ 
ing,  you  can  input  how  you  feel  on  a  scale  of 


1  to  5,  which  is  also  stored  on  the  data  card. 
Uploading  the  data  was  simple  to  the  myZeo 
Web  site  (after  registering),  and  the  personal 
sleep  journal  was  easy  to  use.  The  system  also 
includes  a  sleep  wheel,  which  gives  you  the 
average  ZQ  score  based  on  your  age  -  imagine 
my  surprise  when  I  saw  that  my  scores  were 
slightly  above  average.  I’m  not  sure  if  that’s 
a  statement  on  my  good  sleep  performance 
(even  with  three  young  kids  and  all  the  caf¬ 
feine  I  drink  I  get  between  seven  and  eight 
hours  of  sleep  a  night),  or  rather  the  poor  sleep 
performance  of  the  rest  of  the  world. 

►  Some  caveats:  The  alarm  clock  is  nice, 
but  I  would  have  preferred  waking  up  to  a 
radio  station,  or  even  an  auxiliary  jack- 
connected  iPod  rather  than  the  “soothing 
sounds”  options  of  the  Zeo.  Also,  the  site 
and  coaching  areas  didn’t  offer  me  ways  to 
improve  certain  areas  of  sleep,  but  rather 
gave  general  tips  on  how  to  improve  overall 
sleep  (don’t  drink  caffeine,  don’t  read  in  bed). 
In  my  case,  half  of  my  sleep  pattern  was  spent 
in  light  sleep,  and  I  wanted  to  find  ways  of 
getting  more  deep  or  REM  sleep.  Having  the 
data  was  great,  but  there  didn’t  seem  to  be  a 
next  step  on  what  I  could  do  with  that  data. 

►  Bottom  line:  I’d  recommend  this  as  a 
starting  point  if  you  find  yourself  with  sleep 
issues.  Since  I  didn’t  have  major  sleeping 
issues,  this  was  more  of  a  fun  device  to  try 
out  for  a  while. 

►  Grade  ★★★*  3.5  stars  (out  of  five) 

Follow  Keith  on  Twitter  (@shawkeith). 


►  Gearhead,  from  page  16 

is  not  something  for  the  casual  code 
hacker  as  Android  application  devel¬ 
opment  is  done  in  Java  and  you’ll 
need  the  Android  Software  Devel¬ 
oper’s  Kit,  the  Java  Development  Kit, 
and,  if  you’re  serious,  you’ll  need  the 
Eclipse  integrated  development  envi¬ 
ronment  and  the  Android  Develop¬ 
ment  Tools  (ADT)  Plugin. 

If,  however,  you  are  a  casual  code 
hacker  then  you  may  be  interested  to 
hear  that  Google  will  soon  be  releas¬ 
ing  App  Inventor  for  Android. 

App  Inventor  is  a  mashup  of  a  cou¬ 
ple  of  other  intriguing  projects:  The 
Open  Blocks  Java  library,  a  frame¬ 
work  for  programming  using  graphi¬ 
cal  “blocks”  to  build  programs  and  the 
Kawa  Language  Framework,  a  ver¬ 
sion  of  the  Scheme  language  written 
in  Java  that  generates  Java  bytecode. 

In  other  words,  these  two  building 
blocks  allow  the  dragging  and  drop¬ 
ping  and  manipulation  of  visual 
chunks  that  represent  procedural 
programming  steps  making  creat¬ 
ing  applications  for  Android  some¬ 
what  intuitive  (I  say  “somewhat”  as 
no  programming  system  that  pro¬ 
duces  anything  really  powerful  can 
be  really  simple). 

Next  week  we’ll  look  at  a  visual 
block  language,  Scratch,  that  is 
much  like  the  nuts  and  bolts  of  App 
Inventor. 

Gibbs  has  a  programming  itch  in 
Ventura,  Calif.  Your  comments  and 
irritations  to  gearhead@gibbs.com. 
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SECURITY 


re  you  concerned  about  controlling 

•  .  ■  _ _  .  ^ 


ociat  networking  and  Web  2.0  applications 


There's  a  serious  problem  on  today's  enterprise  networks  -  the  users  are  in  control. 
Employees  are  using  Web  2.0  and  social  networking  applications  without  the  consent  of 
IT  departments.  Most  enterprise  users  depend  on  these  applications  to  collaborate  for 
business  and  get  their  jobs  done  faster  and  more  efficiently.  But  there  are  significant 
risks  lurking,  including  productivity  loss,  data  leakage,  and  malware. 


What  should  IT  departments  do? 

Block  these  applications  and  you  could  deflate  employee  morale,  or  worse,  hurt  the 
business.  Allow  these  applications  and  you  make  the  company  susceptible  to  substantial 
risks. 


Don't  use  Security  1.0  to  enable  Enterprise  2.0 


Learn  how  a  next-generation  firewall  can: 

•  Identify  and  classify  hundreds  of  social  networking  and  web  2.0  applications 

•  Apply  user-  or  group-based  access  policies 

•  Scan  allowed  applications  for  malware  and  block  threats 

•  Shape  the  traffic  with  bandwidth  or  time  limits 

•  Log  and  report  all  user  activity  to  meet  compliance  mandates 


Become  a  Security  2.0  Expert  -  Download  our  White  Paper 


Visit  www.paloaltonetworks.com/BlockOrNot 
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Social  network  sites:  Block  or  not? 


BLOCKING  EMPLOYEE  ACCESS  TO 
SOCIAL  media  is  unnecessary,  short¬ 
sighted  and  counterproductive.  Yet, 
according  to  one  study,  some  54%  of 
U.S.  companies  restrict  employees 
from  visiting  sites  such  as  Facebook, 
Twitter  and  Linkedln. 

The  concerns  that  lead  to  block¬ 
ing  access  are  easily  addressed.  The 
most  commonly  raised  fear  is  loss  of 
productivity.  Fueled  by  back-of-the- 
envelope  calculations  by  vendors 
that  sell  blocking  software  and  hard¬ 
ware,  companies  are  convinced  they 
are  losing  productivity  whenever 
employees  log  on  to  a  social  network. 
In  fact,  studies  show  productivity 
actually  increases  when  employees  are  able  to  connect  to  their  net¬ 
works,  by  as  much  as  9%,  according  to  research  by  the  University 
of  Melbourne. 

But  the  premise  that  productivity  suffers  is  flawed  at  its  core. 
It  assumes  employees  work  only  eight  hours  and  that  time  spent 
online  eats  into  the  limited  time  available  for  work.  It  also  assumes 
employees  never  work  away  from  the  office,  an  absurd  (and  dis¬ 
proved  assumption  in  the  world  of  24/7  connectedness. 

Ultimately,  productivity  is  not  a  technology  issue.  Will  the  small 
percentage  of  workers  whose  productivity  suffers  because  of  the 
time  they  spend  online  suddenly  become  paragons  of  productivity 
when  that  access  is  removed?  Most  likely  they  will  just  find  other 
ways  to  avoid  work.  Productivity  is  a  supervisor’s 
job,  not  IT’s;  companies  need  to  train  supervisors  to 
identify  abuse  and  manage  by  exception.  Companies 
also  worry  about  what  employees  will  say  in  social 
networks,  from  violation  of  government  regulations 
to  exposure  of  company  secrets.  These  concerns  are 
addressed  by  clearly  communicated  social  media 
policies  (which  most  organizations  still  don’t  have). 

In  any  case,  there  have  been  precious  few  reports  of 
such  incidents. 

Network  security  is  next  on  the  list  of  worries, 
with  IT  departments  insisting  that  blocks  are  nec¬ 
essary  to  prevent  the  introduction  of  all  manner  of 
digital  infections.  Blocking  may  be  the  easiest  way 
to  keep  networks  safe,  but  it  is  not  the  only  way. 

Consider  the  U.S.  Department  of  Defense,  which 
has  introduced  a  policy  allowing  users  of  Penta¬ 
gon  servers  to  access  Facebook,  Twitter,  MySpace, 

Flickr  and  other  social  sites.  Defending  against 
malicious  activity  is  now  a  more  granular  activity. 

►  See  Holtz, page  20 


HOW  DOES  PLAYING  FARMVILLE  OR 

Mafia  Wars  on  company  time  affect 
the  business?  At  a  minimum  it’s  a 
waste  of  resources,  while  at  the  worst 
it  exposes  the  company  to  unneces¬ 
sary  risk. 

Yes,  you  can  draw  a  distinction 
between  personal  and  professional 
social  networking  sites:  Facebook  is 
a  different  beast  than  Linkedln,  and 
attracts  different  types  of  users  for 
different  reasons.  Any  geek  who’s 
been  asked  by  a  friend  or  family 
member  to  fix  a  slow  PC  understands 
the  average  home  user  doesn’t  grok 
the  concept  of  contextual  trust:  they’ll 
happily  click  any  link,  accept  any  friend  invitation  and  even  install 
software  from  just  about  any  Web  site. 

In  contrast,  users  of  Linkedln  and  other  professional  network¬ 
ing  sites  tend  to  be  more  discriminating.  One  of  the  differences 
seems  to  be  what’s  in  it  for  the  user:  to  the  business  user,  if  there’s 
no  professional  benefit,  it  goes  ignored;  whereas,  to  the  home  user 
it’s  all  about  entertainment. 

But  the  problem  is  most  of  us  aren’t  good  at  separating  our  per¬ 
sonal  and  professional  lives.  Chances  are  we  use  the  same  pass¬ 
word  for  our  Google  Buzz  account  that  we  use  for  the  corporate 
Active  Directory  login  and  even  SalesForce.com. 

We  also  tend  to  employ  the  same  habits  when  we  use  the  same 
applications,  whether  in  a  personal  or  professional  context.  When 
corporate  security  guidance  warns  us  not  to  open 
e-mail  from  people  we  don’t  know,  it  improves  our 
e-mail  habits  on  our  home  computer.  If  the  sites 
we  visit  are  primarily  for  work,  we  bring  a  healthy 
dose  of  suspicion  along;  but  bring  Classmates.com 
into  the  workplace  and  recreational  browsing  hab¬ 
its  cross  over  into  our  office  browsing. 

The  bad  guys  know  e-mail  protection  is  mature 
at  this  point  and  it’s  easier  to  entice  users  to  click 
on  links  in  social  network  sites  than  it  is  to  evade 
e-mail  content  filters.  And  they  can  use  this  for 
more  than  just  identity  theft.  Drive-by  downloads 
can  infect  personal  and  business  computers  alike 
with  all  types  of  malware.  Viruses,  the  perennial 
favorite,  are  now  somewhat  passe,  and  being 
replaced  with  custom,  targeted  malware  that  is 
much  more  dangerous  and  amounts  to  what  is 
being  called  advanced  persistent  threats. 

Aurora,  the  exploit  that  compromised  hundreds 
of  computers  in  more  than  20  big  companies, 

►  See  Poulin, page  20 


The  case  for 
open  access 


Shel  Holtz,  principal, 
Holtz  Communication  + 
Technology 


Should  you 
block  access? 


Yes,  too  risky 


No,  there  is  a  benefit 


Total  Votes:  154 

Cast  your  vote  and  see 
comments  at 

tinyurl.com/tuqnfr7 
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►  Holtz,  from  page  19 

Blocking  access  can  hamstring  a  company  in  a  variety  of  ways. 
Studies  have  shown  that  highly  qualified  Millennials  simply  won’t 
work  for  companies  that  don’t  allow  them  to  network.  Besides, 
blocking  simply  doesn’t  work.  Employees  find  routes  around 
restrictions.  Cell  phones  have  overtaken  computers  as  the  most 
popular  means  by  which  people  connect  to  social  networks. 

Most  important,  though,  is  the  notion  of  employee  engagement. 
Most  CEOs  crave  a  large  population  of  highly  engaged  employees 
as  a  proven  means  of  fueling  growth.  But  engagement  is  built  on 
trust,  and  few  employees  will  want  to  deliver  discretionary  effort 
for  organizations  that  don’t  trust  them  to  play  by  the  rules. 

Companies  that  block  access  also  inhibit  the  organization’s  abil¬ 
ity  to  reap  benefits  from  employees’  social  networks.  Companies 
such  as  General  Motors  and  Sprint  have  removed  any  barriers  to 
access  so  employees  can  evangelize  products  to  friends  and  family 
(which  drives  sales)  and  solve  customer  problems  (which  builds 
loyalty  and  word-of-mouth).  Recruiting  becomes  easier  when 
employees  can  tap  into  their  professional  networks,  and  research 
shows  managers  make  better  and  faster  decisions.  Competitive 
intelligence  is  more  readily  obtained,  subject  matter  expertise 
more  easily  sourced  and  relationships  with  key  stakeholders 
strengthened. 

As  Denmark’s  Peter  Sondegaard  —  senior  vice  president  of 
research  for  Gartner  —  recently  told  an  audience,  innovation  today 
happens  at  the  user  level;  it’s  an  unstoppable  trend,  and  policies 
that  try  to  inhibit  access  to  the  Internet  are  losing  strategies.  ■ 

Shel  Holtz  has  more  than  30  years  of  experience  in 
organizational  communication  strategies.  In  his  consulting 
practice,  he  has  worked  with  companies  such  as  PepsiCo,  Johns 
Hopkins  Medicine,  Symantec,  Ford  Motor  Company  and  Intel.  He 
blogs  at  http://blog.holtz.com. 


►  Poulin,  from  page  19 

including  Google  and  Adobe,  is  believed  to  have  been  delivered  to 
the  target  computers  via  spear  phishing  and  drive-by  download. 
It’s  possible  that  the  victims  were  lured  with  targeted  e-mails  at 
their  corporate  account,  but  it’s  just  as  easy  to  lure  victims  through 
social  network  sites. 

Another  danger  of  social  networking  is  leakage  of  intellectual 
property.  “Working  late— AGAIN.  Man,  can’t  wait  until  we  solve 
the  hydrogen  matrix  reticulation  problem”  is  the  kind  of  Tweet 
that  can  reveal  your  new  product  technology. 

Of  course,  there’s  nothing  stopping  employees  from  posting  the 
same  thing  at  home.  Employees  have  a  responsibility  to  be  discreet 
whether  at  the  office  or  home,  and  employers  have  to  set  the  expec¬ 
tation  by  providing  security  awareness  training. 

As  with  all  things,  there’s  a  gray  area.  Some  sites,  like  Linkedln, 
are  harder  to  target  because  they  have  a  low  tolerance  for  unsolic¬ 
ited  contacts  or  mechanisms  in  place  to  vet  relationships  before 
allowing  communications  between  the  parties.  In  general,  it  is  fine 
to  allow  employees  to  access  these  sites  with  appropriate  security 
awareness  training  and  a  clear  acceptable-use  policy  to  give  it  teeth. 
Conversely,  businesses  can  use  Facebook  and  Twitter  to  promote 
themselves,  but  this  access  should  be  closely  controlled,  relegated 
to  public  relations  staff  and  certain  executives. 

The  key  is  finding  a  balance  between  security  and  a  way  to  use 
new  technologies.  Every  business  should  evaluate  the  options  in 
the  context  of  their  own  environment.  ■ 

Q1  Labs  is  a  global  provider  of  high-value,  cost-effective,  next- 
generation  network  security  management  products.  For  more 
information,  visit  Q1  Labs,  e-mail  info@QlLabs.com,  or  call 
781-250-5800. 
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This  debate  is  moot 

©  This  debate  is  basically  moot.  With 
the  advent  of  iPhones  and  Blackberrys, 
whether  you  allow  employees  to  access 
social  networks  inside  the  firewall  or  not, 
they  WILL  access  them.  This  is  (or  ought 
to  be!)  a  management  issue  not  an  access 
issue.  Employers  need  to  have  two  things: 
1)  clear,  specific  information  to  inform 
employees  about  what  is  and  is  not  ap¬ 
propriate  to  share:  2)  Effective  managers 
V'7  who  will  deal  with  time-management 
;  issues  and/or  inappropriate  behaviour  by 
employees  with  respect  to  social  networks. 
■  .In  this  case  I  would  flip  an  old  adage: 

"Doat  blame  the  game,  blame  the  player". 
"Possible’’  bad  behaviour  by  isolated 
employefes  is  simply  not  a  good  enough 
justificatio'rffor  ignoring  THE  customer- 
v  engagement  tool,  access  point,  marketing 
v .  opportunity  and  focus  group  of  our  gen- 

eration.  Plus  -  it  won’t  work!  -  KRISTEN 

‘  ■  '■  . •  .  ■■ 

.  .  . 


Not  Required 

©  People  who  put  Facebook  and 
Twitter  as  a  business  requirement  are 
fooling  themselves.  It  is  a  personal  thing. 
Period.  End  of  story.  That’s  like  the  user 
who  says  ‘Why  block  YouTube?  It's  great 
for  the  employees".  Security  comes 
first.  With  all  the  issues  out  there  with 
these  sites,  why  allow  it?  Do  you  allow 
access  to  gmail  and  hotmail?  If  so,  then 
you  might  as  well  allow  Facebook  and 
such.  The  problem  isn’t  productivity 
but  controlling  information.  Do  you  want 
someone  sharing  company  info  via  these 
mediums  or  not?  —  COME  ON  REALLY 

Not  of  open  access 

@  The  frustrating  thing  for  me  is  that 
we  created  a  Facebook  fan  page  for 
the  company  and  opened  up  the  site 
completely  in  order  to  create  more  lines 


of  communication  between  customers, 
vendors,  and  employees.  A  Facebook  fan 
page  is  an  outstanding  place  to  keep 
fresh  content  in  a  less  formal  way.  and 
to  actually  get  dialog  going.  However, 
everybody  wants  to  play  Farmville  instead 
of  helping  our  company  create  a  vibrant 
online  community.  Our  challenge  is  to  get 
our  employees  more  involved  with  the 
company  page  and  off  their  personal  FB 
stuff  in  the  day.  -  MICHAEL  BARTLETT 

A  voice  of  reason 

©  Social  media  is  a  critical  business  tool 
that  is  spurring  innovation,  productivity, 
and  generating  revenue.  IT  people  need 
to  ensure  secure  network  environments 
instead  of  engaging  in  heavy  handed 
restrictive  measures.  Remember,  we 
support  the  business  and  users.  Be  a 
part  of  the  solution  and  don’t  opt  for 
“control"  or  the  easy  way  out.  -  ANON 
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CLEAR  CHOICE  TEST:  CISCO  CATALYST  3750  X  SWITCH 


Cisco  goes  green  with  Catalyst  3750-X 

Cisco  delivers  cost  savings  by  creating  power  pool  within  switch  stack 


BYDAVID  NEWMAN,  NETWORKTEST 


Buy  less  equipment,  use  less  power: 

That’s  a  proposition  network 
managers  can  get  behind,  and  it’s 
what  Cisco  promises  with  the  new 
power  management  features  in  its 
Catalyst  3750-X  stackable  access  switch. 

As  this  exclusive  Clear  Choice  Test  dem¬ 
onstrates,  Cisco  makes  good  on  that  promise 
with  StackPower,  a  means  of  pooling  power 
among  switches  in  a  stack.  Testing  validated 
that  StackPower  can  cut  both  capital  and 
operational  costs. 

The  switches  also  support  Power  over 
Ethernet-Plus  (PoE+),  a  new  method  of  light¬ 
ing  up  power-hungry  Web  cameras,  802.11n 
Wi-Fi  access  points,  and  other  devices  requir¬ 
ing  more  juice  than  the  old  PoE  standard  can 
supply. 

We  verified  full  PoE+  operation  on  48 
switch  ports  concurrently,  and  ran  the  switch 
through  a  rigorous  battery  of  conformance 
tests  developed  by  Sifos  Technologies.  Those 
tests  turned  up  only  minor  issues,  none  of 
which  should  affect  interoperability. 

The  3750-X  offers  other  new  features,  such 
as  MACSec  encryption  and  Smart  Opera¬ 
tions  deployment  software,  on  top  of  what  is 
already  a  lengthy  features  list.  We  focused  on 
the  switch’s  power  management  capabilities. 

StackPower  offers  a  means  of  pooling 
power  supplies  within  a  stack  and  making 
wattage  available  to  any  switch  as  needed. 
The  advantages  include  savings  on  power 
and  power  supplies;  redundancy  with  no 
extra  footprint;  and  a  prioritization  scheme 
that  first  cuts  power  to  lower-priority  ports 
in  case  a  power  supply  fails. 

StackPower  connections  are  conceptually 
similar  to  the  StackWise  Plus  links  supported 
in  earlier  Catalyst  3750  switches,  with  mul¬ 
tiple  switches  connected  in  a  ring  topology. 


CLEAR 


The  switches  continue  to  share  power  if  a 
connection  fails,  something  we  verified  in 
testing.  (While  StackPower  works  only  with 
the  new  X  series  switches,  StackWise  Plus 
works  between  newer  and  older  Catalyst 
3750  models.) 

Up  to  four  Catalyst  3750-X  switches  can 
form  a  StackPower  ring.  This  is  fewer  than 
the  nine  switches  supported  in  StackWise 
Plus.  However,  a  nine-switch  StackPower 
unit  still  can  be  formed  through  the  use  of  an 
XPS-2200,  an  external  redundant  power  sys¬ 
tem  that  connects  to  the  switches  using  a  star 
topology.  We  did  not  test  the  XPS-2200. 

Cost  savings  is  StackPower’s  most  obvi¬ 
ous  benefit.  Given  the  importance  network 
managers  typically  place  on  high  availability, 
it’s  not  uncommon  to  find  redundant  power 
supplies  in  every  switch  throughout  the 
enterprise.  With  StackPower,  it’s  possible 
to  purchase  fewer  power  supplies  and  still 
obtain  N+l  redundancy  for  power  supplies 
in  a  ring. 

For  example,  if  each  of  three  switches  in 
a  stack  consumes  200  watts,  the  aggregate 
power  draw  is  600  watts.  With  715-watt 
power  supplies,  full  N+l  redundancy  would 
involve  six  power  supplies  at  $1,000  each, 
supplying  up  to  4,290  watts. 

In  contrast,  the  StackPower  could  run  the 
same  stack  with  as  few  as  two  715-watt  power 
supplies.  That’s  a  savings  of  four  power 
supplies,  or  $4,000,  and  a  rated  capacity 


Cisco  Catalyst  3750-X  power  consumption 


Test  case 

•'  '•  \  v 
'.‘V  .  •  •  V. 

Power  consumption 
(watts) 

Single  switch,  single  power  supply,  idle 

141 

Single  switch,  single  power  supply,  fully  loaded 

150 

Two-switch  stack,  single  power  supply,  idle 

217 

Two-switch  stack,  single  power  supply,  fully  loaded 

224 

Two-switch  stack,  48  ports  PoE+,  single  power  supply,  idle 

1,804 

Two-switch  stack,  48  ports  PoE+,  single  power  supply 

1,799 

of  only  1,430  watts,  with  the  same  level  of 
redundancy. 

While  many  other  stackable  switches  sup¬ 
port  an  external  redundant  power  supply, 
this  is  the  first  system  we’re  aware  of  that  pro¬ 
vides  internal  redundancy,  and  thus  requires 
no  extra  rack  space. 

The  new  power  system  also  boosts  resil¬ 
iency  through  strict  and  redundant  configu¬ 
ration  modes  that  allocate  and  reserve  only 
as  much  power  as  is  required.  If  one  or  more 
power  supplies  fails,  the  switch  will  begin 
shedding  power  using  a  three-tier  prioriti¬ 
zation  scheme.  This  prioritization  could  be 
used,  for  example,  to  protect  PoE  ports  by 
first  shutting  down  other  ports. 

Another  new  feature  is  support  for  the 
new  PoE+  standard.  As  described  in  the 
IEEE  802.3at  specification,  PoE+  offers  up  to 
30  watts  per  switch  port,  nearly  double  the 
15.4  watts  supplied  by  first-generation  PoE 
equipment. 

As  far  as  we  could  determine,  the  Catalyst 
3750-X  is  among  the  first  switches  to  concur¬ 
rently  support  PoE+  on  all  48  ports  without 
requiring  an  external  power  supply.  We  put 
that  claim  to  the  test  using  the  PowerSync 
analyzer  from  Sifos  Technologies.  (Sifos 
provides  PoE  and  Ethernet  PHY  automated 
test  and  measurement  solutions  for  network 
equipment  and  semiconductor  manufactur¬ 
ers,  test  labs,  system  integrators,  field  service 
and  IT  departments.) 

Using  the  Sifos  analyzers,  we  assessed  PoE+ 
in  two  ways.  First,  we  verified  that  the  3750-X 
could  indeed  supply  30  watts  on  all  48  gigabit 
Ethernet  ports  at  the  same  time.  The  switch 
passed  this  test  without  complaint. 

Second,  we  ran  the  full  Sifos  protocol  confor¬ 
mance  suite  to  measure  how  faithfully  the  new 
Cisco  switch  adheres  to  the  IEEE  802.3at  spec. 
Of  hundreds  of  tests  in  this  suite,  the  3750-X 
failed  just  three,  all  relatively  minor.  Cisco  says 
it’s  issuing  a  fix  for  these  issues  in  new  software 
scheduled  for  release  in  late  August. 

The  first  failure  involved  one  field  in  the 
logical  link  discovery  protocol  (LLDP)  pack¬ 
ets  that  devices  use  to  identify  one  another. 
This  is  a  gray  area  in  the  802.3at  specification 
and  might  not  be  a  problem  in  production 
networks. 

Cisco  uses  a  legacy  value  in  the  power-via- 
MDI  (medium  dependent  interface)  type- 
length-value  field  of  LLDP  packets  rather 
than  one  of  two  values  given  by  the  IEEE 
standard.  This  has  no  impact  on  Cisco’s  PoE+ 
devices.  It  could  be  a  problem  for  other  ven¬ 
dors’  powered  devices  —  but  only  if  those 
devices  expect  a  specific  return  value.  Even  in 
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CLEAR  CLEAR  CHOICE  TEST:  CISCO  CATALYST  3750-X  SWITCH 

CHOICE 

TESTJ^ 


that  case,  the  device  could  still  use  PoE+  but 
might  not  support  some  extended  features. 

The  second  failure  involved  the  time 
needed  to  go  into  a  fully  powered-up  state. 
The  IEEE  spec  expects  power-supplying 
equipment  to  take  no  longer  than  400  mil- 
lisec  between  the  instant  of  deciding  to  apply 
power  and  being  fully  powered  up.  The  Cisco 
switch  took  slightly  longer,  as  high  as  465 
millisec,  on  a  few  switch  ports.  Other  ports 
were  within  the  400-millisec  limit. 

The  higher  times  are  probably  due  to  Cis¬ 
co’s  use  of  IOS  to  handle  power-management 
decisions  as  opposed  to  the  PoE+  logic  itself 
in  dedicated  power  injectors.  The  400-mil¬ 
lisec  limit  is  in  place  to  minimize  the  risk  of 
a  device  being  unplugged  during  power-up 
and  has  no  impact  on  interoperability. 

The  final  failure  had  to  do  with  the  way 
the  switch  restricts  current  as  it  powers  up. 
This  is  mostly  to  protect  the  switch  in  case  a 
powered  device  demands  too  much  current. 
The  IEEE  spec  requires  the  switch  to  go  into 
a  current-limited  state  for  at  least  50  millisec 
but  no  longer  than  75  millisec.  The  Sifos  ana¬ 
lyzer  reported  that  a  few  Cisco  switch  ports 
remained  in  a  current-limited  state  for  at  least 
100  millisec.  This  issue  is  unlikely  to  have  any 
impact  on  device  interoperability.  (Further, 
our  power  consumption  measurements  sug¬ 
gest  the  switch  has  sufficient  power  to  handle 


overload  situations.) 

Above  and  beyond  these  minor  issues, 
network  managers  may  need  to  reconsider 
power  and  cooling  budgets  when  rolling  out 
PoE+. 

A  large-scale  802.3at  deployment  requires 
a  lot  of  po  wer  —  in  this  test,  1,440  watts  just 
for  PoE+  alone  on  48  ports,  with  additional 
wattage  needed  for  other  switch  functions. 
With  all  that  power  in  use,  PoE+  installations 
also  throw  off  far  more  heat  than  their  PoE 
predecessors.  Older  wiring  closets  with  poor 
ventilation  unfortunately  are  all  too  common 
in  enterprise  networks;  these  aren’t  good  can¬ 
didates  for  supporting  many  ports  of  PoE+. 

As  a  final  test  of  the  Catalyst  3750-X’s  power 
management  features,  we  measured  power 
consumption  in  various  configurations,  both 
idle  and  fully  loaded. 

We  used  three  tools  for  this:  a  Fluke  335 
TrueRMS  clamp  meter  for  the  power  mea¬ 
surement  itself;  the  Sifos  analyzer  to  load  up 
PoE+  ports;  and  a  Spirent  TestCenter  traffic 
generator/analyzer  to  blast  the  switch  with 
line-rate  traffic  on  all  ports,  thus  fully  utiliz¬ 
ing  the  switch  fabric. 

With  a  single  1,150-watt  power  supply,  one 
switch  consumed  around  141  watts  idle  and 
150  watts  fully  loaded  (see  Table  1).  These  fig¬ 
ures  are  virtually  identical  to  those  measured 
on  a  Cisco  Catalyst  3570-E  in  Network  World’s 


StackPower  saves  on  capital,  power  costs 

The  StackPower  feature  of  the  Cisco  Catalyst  3750-X  pools  power 
among  stacked  switches,  reducing  power  consumption  and  the  number 
of  power  supplies  needed.  The  StackPower  switches  at  right  offer  the 
same  N+l  redundancy  as  the  left-hand  switches  without  StackPower, 
yet  require  four  fewer  power  supplies  to  do  so. 
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WITHOUT  STACKPOWER 

Power  budget: 

3  switches  at  200  watts  =  600  watts 


WITH  STACKPOWER 

Power  budget: 

3  switches  at  200  watts  =  600  watts 


Power  supplies: 

6  units  at  715  watts  =  4290  watts 


Power  supplies: 

2  units  at  715  watts  =  1430  watts 
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Product 

Cisco  Catalyst  3750-X 

Vendor 

Cisco 

Pricing 

$17,500  per  switch;  chassis, 
$14,000;  uplink  module, 
$2,500;  1100-watt  power 
supply,  $1,500;  715-watt 
power  supply,  $1,000. 

Pros 

Power  distribution  reduces 
costs;  full  PoE+  support; 
lengthy  features  list. 

Cons 

Minor  protocol  conformance 
issues  with  PoE+. 

early  2008  access  switch  comparison. 

Power  consumption  was  only  about  50% 
higher,  not  double,  when  the  same  single 

power  supply  drove  two  3750-X  switches  in 
a  stack.  And  with  PoE+  enabled  and  line  rate 
traffic  offered  to  48  gigabit  Ethernet  ports,  a 
two-switch  stack  equipped  with  two  power 
supplies  consumed  about  1,800  watts  (the 
slight  differences  with  and  without  traffic  are 
within  the  Fluke  instrument’s  measurement 
resolution).  As  noted,  PoE+  alone  consumes 
1,440  watts  of  the  total.  The  two  switches  use 
the  remaining  364  watts,  or  around  182  watts 
each,  comfortably  within  Cisco’s  rated  maxi¬ 
mum  of 246  watts  per  switch. 

With  these  new  power  features,  the  Cata¬ 
lyst  3750-X  extends  an  already  lengthy  fea¬ 
tures  list.  StackPower  and  PoE+  provide  an 
innovative  way  to  pool  power  and  to  support 
power-hungry  new  devices.  ■ 


Newman  is  a  member  of  the  Network  World 
Lab  Alliance  and  president  of  Network  Test, 
an  independent  test  lab  and  engineering 
services  consultancy.  He  can  be  reached  at 
dnewman@networktest.com. 


©  Network  World  gratefully  acknowl¬ 
edges  the  vendors  that  supplied  key 
test  bed  infrastructure  to  make  testing 
possible.  Sifos  Technologies,  a  vendor 
of  power  over  Ethernet  and  Ethernet 
PHY  test  sets,  supplied  its  PowerSync 
analyzers  and  considerable  engineering 
support.  Spirent  Communications  sup¬ 
plied  its  Spirent  TestCenter  traffic  gen¬ 
erator/analyzer  with  both  10-gigabit  and 
gigabit  Ethernet  test  ports.  And  Fluke 
Corp.  supplied  its  Fluke  335  TrueRMS 
clamp  meter  for  power  measurement. 
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This  is  the  most  important  security  event  you’ll  attend  in  2010. 

With  an  information-packed  agenda  -  including  a  dedicated  Digital  ID  World  track  -  you’ll 
gain  real-world  insight  into  how  business  leaders  are  winning  against  today’s  security  and 
compliance  challenges. 

>  Learn  how  to  achieve  business  and  competitive  advantage  by  embracing  new  advances  in 
information  security 

>  Network  with  some  of  the  most  influential  business  and  IT  security  leaders  from  across  the  nation 

>  Be  one  of  the  first  to  see  results  revealed  from  a  groundbreaking  2011  Global  State  of  Information  Security 
Survey,  conducted  by  CSO  magazine  and  PricewaterhouseCoopers 


Featured  Speakers  Include:  Senior  IT  security  executives  from  MasterCard,  ADP,  the  U.S.  Cyber  Consequences 
Unit,  Ogilvy  &  Mather  Worldwide,  McKesson  Corp.,  ITT,  Bank  of  China/NY  and  Thomson  Reuters 


Register  now  for  the  early-bird  rate  at  WWW.thesecuritystandard.net/nyc2010ad  to  join  CSO  and 
senior-level  IT  security  executives  at  this  critically  important  IT  security  event. 
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CLEAR  CHOICE  TEST:  DESKTOP  SEARCH  ENGINES 


Data  mining  for  your  desktop 

XlTechnologies  wins  test  of  six  third-party  search  tools  for  Windows  desktops 


BY  MIKE  HECK 

Looking  for  a  relatively  simple  and 
inexpensive  way  to  improve  end 
user  productivity?  Desktop  search 
tools  can  help  users  swiftly  locate 
critical  nuggets  of  data,  freeing  up 
time  for  more  important  tasks. 

Of  course,  Microsoft  offers  a  built-in  search 
tool,  which  has  vastly  improved  over  the 
years,  particularly  with  Windows  7.  But  many 
employees  want  features  beyond  what  Micro¬ 
soft  offers,  such  as  multiple  query  methods, 
auto  categorization  and  clustering  of  results. 

We  tested  six  desktop  search  products 
—  Copernic  Desktop  Search,  dtSearch  Desk¬ 
top,  Exalead  Desktop,  Google  Desktop,  ISYS 
Search  and  XI  Professional  Client.  We  also 
looked  at  the  latest  Microsoft  Search,  so  we 
could  evaluate  the  differences  between  third- 
party  tools  and  what  comes  standard  with 
Windows. 

Our  Clear  Choice  Test  winner  is  XI  Profes¬ 
sional  Client.  In  every  test  scenario  it  proved 
superior  —  from  the  most  documents  types 
indexed  and  previewed,  to  type-ahead  show¬ 
ing  of  results.  It  was  also  the  only  product  to 
play  well  with  Microsoft  Office  2010. 

We  were  impressed  with  Copernic  Desktop’s 
user  interface  and  the  simple  way  it  refines 
results.  However,  it  lacks  the  more  advanced 
search  and  result-filtering  features. 

DtSearch  has  a  modern  look  and  provides  a 
bevy  of  advanced  search  options  and  ways  to 
manage  indexes.  It  would  be  our  main  choice 
for  forensic  investigations,  but  it  just  doesn’t 
pull  everything  together  as  well  as  XL 
ISYS  lost  points  on  usability.  The  unwieldy 
way  indexes  are  managed  —  and  the  need  to 
redo  searches  on  individual  indexes,  could 
reduce  some  of  the  productivity  savings  that 
desktop  search  promises. 

Of  the  two  browser-based  tools  we  tested, 


Exalead  and  Google,  Google  is  the  better  choice. 
We  found  that  Exalead’s  faceted  navigation 
outclasses  what  Google  recently  implemented 
on  its  Internet  search  site.  But  when  we  take  in 
the  whole  picture,  Google  is  our  pick  because 
of  its  almost  insurmountable  advantage  in 
accurate  Internet  searches  —  plus  the  way 
Google  federates  those  with  local  results. 

Here  are  detailed  results  for  each  product: 


la  Copernic  Desktop  Search 
Corporate,  Version  3 

Copernic  Desktop  Search  comes  in  Home 
(free),  Professional  ($49.95)  and  Corporate 
($59.95)  versions.  All  three  index  more  than 
150  types  of  files,  including  MP3,  JPG,  WAV 
and  MPEG  —  along  with  Microsoft  Word, 
Excel,  PowerPoint,  PDF,  HTML  and  ZIP  files. 
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Vendor 

Copernic 

dtSearch 

XlTechnologies 

ISYS  Search  Software 

Product 

Copernic  Desktop  Search 

dtSearch  Desktop 

XI  Professional  Client 

ISYS  Personal  Edition 

Price 

Professional:  $50; 

Corporate:  $60 

$60  per  seat 

$50 

$99 

Pros 

Fast,  simple  user 
interface,  indexes  more 
than  150  types  of  files. 

Advanced  search 
options,  good  for  forensic 
investigations. 

Supports  broadest  set  of 
document  types,  plays 
well  with  Office  2010. 

Searches  are  accurate 
and  fast. 

Cons 

Lacks  advanced  search  and 
results-filtering  features. 

Some  navigational  features 
need  to  be  streamlined. 

Version  we  tested  did  not  work 
with  64-bit  Outlook  2010. 

Complex  interface. 

Score 

3.95 

3.75 

4.3 

3.8 
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They  also  handle  e-mails  and  attachments 
from  Outlook,  Outlook  Express,  Eudora  and 
Mozilla  Thunderbird. 

The  Professional  package  gives  you  the 
capability  to  find  Outlook  appointments, 
tasks  and  notes.  It  also  extends  search  to 
network  drives.  As  such,  this  version  may  be 
the  better  choice  for  smaller  offices  that  don’t 
have  access  to  dedicated  IT  support. 

The  corporate  option  indexes  Lotus  Notes 
content  and  gives  technical  staff  automated 
deployment  capabilities.  These  include  cus¬ 
tomizing  help  messages,  limiting  indexing  to 
certain  sources  and  specifying  performance 
settings  during  setup. 

No  matter  which  version  you  pick,  during 
setup  you  choose  which  files  and  e-mail  fold¬ 
ers  to  index.  An  initial  scan  on  my  test  system 
required  about  30  minutes.  Normally,  Coper- 
nic  automatically  updates  its  index  in  real  time 
as  new  e-mails  are  received  and  files  are  edited 
—  and  operating  in  this  default  mode  didn’t 
appear  to  affect  the  computer’s  performance. 

Alternately,  you  can  create  a  custom  index¬ 
ing  schedule  for  each  category  of  files.  Inter¬ 
estingly,  Copernic  is  the  only  product  specifi¬ 
cally  optimized  for  netbooks;  it  intelligently 
suspends  indexing  while  you’re  doing  other 
work  to  save  battery  power.  Additional  set¬ 
tings  let  you  control  how  computer  resources 
are  allocated  during  indexing. 

This  product  has  a  contemporary,  stream¬ 
lined  user  interface  with  tabs  that  identify  the 
asset  types  that  you  can  search,  such  as  e-mail, 
contacts,  music,  images  or  all  types  at  once. 

My  searches  finished  in  less  than  a  second, 
and  returned  a  list  of  matches  that  can  be  fur¬ 
ther  sorted  and  grouped  in  multiple  ways  —  by 
file  name,  date  and  author.  You  can  preview 
documents,  with  the  search  word  highlighted, 
so  there’s  no  need  to  open  them  in  the  originat¬ 
ing  application.  A  special  navigation  area  helps 
you  further  refine  results  by  picking  a  specific 
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file  type  (such  as  all  Word  documents). 

For  those  with  more  experience,  Copernic 
lets  you  refine  searches  by  combining  your 
search  term  and  commonly  used  Boolean 
operators.  For  example,  the  query  ‘netbook 
NEAR  linux’  finds  documents  with  the  words 
‘netbook’  and  ‘linux’  at  most  10  words  apart. 
But  you  don’t  get  the  variety  of  advanced 
searching  included  with  dtSearch  or  XI. 

Copernic  lets  you  name  and  save  searches. 
Therefore,  if  you  need  to  look  for  the  same 
type  of  documents,  you  can  recall  prior  query 
settings  and  perform  a  search  with  one  click. 

You  search  the  Web  from  Copernic’s  main 
interface,  a  process  that  jumps  to  the  firm’s 
own  Internet  search  engine.  One  limitation 
is  that  Web  and  local  results  aren’t  combined 
(federated),  which  is  a  handy  capability  of 
Exalead  and  Google. 

Still,  Copernic  strikes  a  good  balance  of 
usability,  features  and  performance. 


2. 


Exaiead 


Google 


Exalead  Desktop  Search 

Google  Desktop, 

Version  5.9 

Based  on  configuration 

Free 

Multi-faceted  navigation, 

Browser-based,  easy-to- 

optimized  for  multi- 

use,  federates  desktop 

core  PCs. 

and  online  searches. 

Web  searches  not  as 
accurate  as  Google. 

3.85 


Search  capabilities  are 
fairly  rudimentary. 

3.75 


dtSearch  Desktop,  Version  7.64 

DtSearch  combines  impressive  searching 
power  with  an  easy-to-manage  interface.  The 
software  handles  more  than  a  terabyte  of  text 
in  a  single  index  —  and  can  simultaneously 
search  an  unlimited  number  of  indexes.  For 
this  reason,  the  product  is  worth  the  $199 
single-user  price  ($60  per  seat  in  quantity  for 
the  corporate  network  version),  especially 
when  you’re  handling  special  projects  such 
as  forensic  or  legal  investigations. 

But  does  this  package  provide 
the  same  value  to  typical  business 
users?  Possibly  -  particularly  if 
you  need  to  index  information 
that  ranges  from  databases  to 
binary  files. 

Getting  started  with  dtSearch 
is  simple.  You  create  an  index  file 
and  decide  which  folders  or  Web 
sites  to  index.  The  software  auto¬ 
matically  recognizes  popular  file 
types.  The  only  downside  is  that 
creating  the  initial  index  can  be 
time  consuming.  In  my  testing, 
50GB  of  data  and  files  required  six 
hours  to  crawl.  However,  indexing 


individual  document  folders  consumed 
less  than  three  minutes.  And  there’s  a  64-bit 
indexer  that  cut  indexing  time  by  about  half. 

For  corporate  settings,  dtSearch  is  designed 
for  wide-scale  deployment  using  Active 
Directory  or  Microsoft  SMS.  IT  adminis¬ 
trators  can  include  a  policy  that  specifies 
the  index  of  shared  network  drives,  which 
eliminates  each  user  having  to  crawl  those 
repositories. 

You  search  from  the  interface’s  simple  but¬ 
ton  bar  or  open  the  search  dialog  box.  Here 
the  software’s  sophistication  is  quickly  appar¬ 
ent.  To  start,  your  search  request  can  include 
common  syntax,  such  as  quote  marks  around 
phrases,  or  a  plus  sign  in  front  of  any  word  or 
phrase  that’s  required. 

Also,  dtSearch  lets  you  search  files  that  it 
hasn’t  indexed.  This  feature  could  prove  to  be 
a  real  time  saver,  say,  when  you’re  handed  a 
removable  hard  disk  and  have  little  time  to  sift 
through  the  documents  it  contains.  You  can 
also  perform  a  “combination”  search  —  one 
that  queries  both  indexed  and  non-indexed 
folders.  There  are  many  other  advanced 
settings,  including  phonetic  searches  and 
synonyms. 

Combining  these  features  as  needed,  I 
always  found  the  document  I  wanted  in  less 
than  one  second. 

Yet  even  without  the  advanced  selections, 
dtSearch’s  natural  language  algorithms  did 
a  very  good  job  on  “plain  English”  search 
requests.  Here,  the  software  automatically 
weights  terms  by  their  frequency  and  posi¬ 
tion  in  documents. 

Like  other  products  in  this  review,  dtSearch 
highlights  hits  in  native  HTML,  XML  and  PDF 
files  in  the  large  preview  pane.  The  software 
does  the  same  for  word  processor,  database, 
spreadsheet  and  e-mail  —  but  it  must  first 
convert  them  to  HTML  format  for  display. 

Indexing  Microsoft  Exchange  and  Outlook 
e-mail  worked  well,  but  there’s  a  caveat  with 
large  PST  files.  First,  dtSearch  will  index  live 
context  in  your  Outlook  profile.  However, 
the  company  recommends  that  you  use  a 
command-line  tool  to  extract  messages  from 
a  PST  file  to  individual  message  files,  which 
seems  a  bit  onerous  for  everyday  use.  Also, 
you  need  third-party  e-mail  conversion  tools 
to  index  Group  Wise,  Lotus  Notes  and  other 
message  archive  formats. 

DtSearch  has  a  few  options  to  sort  results 
—  by  relevance,  date  or  number  of  hits.  You 
can  also  filter  results  to  match,  for  example, 
all  DOC  files.  However,  this  is  all  done  using 
different  tabs  of  the  main  search  dialog  box. 
Other  programs  provide  more  convenient 
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ways  to  navigate  results  from  their  main 
interface. 

3a  Exalead  Desktop,  Version  4.6 

Exalead  is  built  around  an  intuitive,  browser- 
based  interface  that’s  modeled  after  the  com¬ 
pany’s  Web  search  portal.  This  convenient 
design  lets  you  search  your  desktop  and 
external  Web  sites  from  one  place. 

For  a  free  product,  Exalead  Desktop  is  no 
slouch.  It  recognizes  more  than  120  file  for¬ 
mats.  Furthermore,  the  software  indexes 
e-mail,  attachments,  and  notes  from  Outlook, 
Microsoft  Exchange,  Mozilla  Thunderbird 
and  Lotus  Notes. 

Similar  to  other  vendors,  Exalead  offers 
a  licensed  enterprise  server  product  (price 
quoted  based  on  configuration),  Exalead 
CloudView.  It  collects  structured  and 
unstructured  data  from  most  any  source 
within  an  organization  and  allows  it  to  be 
searched  from  the  single  browser  interface. 
In  the  middle  you’ll  find  the  Professional  Edi¬ 
tion  ($60  per  user).  It  indexes  more  than  300 
file  formats,  offers  IT  departments  managed 
deployment  and  integrates  with  Stellent  con¬ 
tent  management  systems  (part  of  Oracle). 

Exalead  is  a  small  download  and  ready  for 
work  in  a  few  minutes.  After  selecting  the  fold¬ 
ers  to  index,  the  system  completed  its  initial 
crawl  in  about  30  minutes.  There’s  no  limit  to 
the  number  of  documents  —  and  content  can 
be  stored  on  local  hard  disks,  network  drives 
and  attached  storage,  such  as  USB  drives. 

Exalead  is  specially  optimized  for  multi¬ 
core  or  multi-processor  PCs.  This  archi¬ 
tecture  enables  real-time  indexing  without 
degraded  performance  to  keep  results  up-to- 
date.  For  instance,  I  found  an  e-mail  that  I  was 
in  the  middle  of  writing. 

After  performing  a  search,  the  main  dis¬ 
play  shows  a  thumbnail  image,  text  sum¬ 
mary  and  details  about  the  file  or  message. 
File-type  icons  and  document  previews  with 


the  search  term  highlighted  further  help  you 
judge  whether  you’ve  found  the  right  docu¬ 
ment  without  opening  it. 

Most  important,  Exalead  was  one  of  the 
early  pioneers  in  faceted  (or  pivot)  navigation 
of  search  results,  and  that  design  continues  to 
distinguish  the  product.  This  means  you  refine 
searches  by  clicking  on  related  terms  or  classi¬ 
fications  that  appear  in  a  navigation  panel.  For 
example,  you  could  narrow  results  to  show 
just  those  e-mail  messages  from  a  colleague  — 
or  find  documents  created  on  a  specific  date. 

Exalead  approaches  advanced  search  dif¬ 
ferently  from  most  other  products.  Instead  of 
a  form  with  a  lot  of  options,  you  get  one  pop-up 
form  with  about  20  possible  options.  Say  you 
want  to  perform  a  phonetic  spelling.  If  you 
click  that  option,  Exalead  automatically  fills 
in  the  correct  syntax  within  the  search  box 
(soundslike:)  and  you  simply  type  the  word. 
Additionally,  a  built-in  spell  checker  learns 
from  the  terms  in  your  documents. 

The  free  version  has  some  good  security, 
which  is  important  in  a  business  setting,  espe¬ 
cially  where  employees  share  computers.  For 
instance,  it  respects  the  access  rights  for  the 
user  who  is  logged  in,  so  results  won’t  include 
private  files  of  others.  And  the  software  does 
not  index  cached  or  secure  Web  pages. 

Exalead  provides  a  surprising  number  of 
features  that  are  surrounded  by  rich  naviga¬ 
tion  that  helps  a  user  quickly  refine  results.  If 
you  go  with  the  no-cost  download,  it’s  hard  to 
argue  with  the  value  it  provides. 

4a  Google  Desktop,  Version  5.9 

Google,  like  Exalead,  builds  its  desktop 
search  experience  around  a  browser.  In  the 
case  of  Google,  however,  it  has  an  advantage 
because  Desktop  generally  matches  Google’s 
Web  search  experience. 

This  free  application  provides  full-text 
searching  of  Outlook,  Outlook  Express, 
Netscape  and  Thunderbird  e-mail;  Word, 


Excel  and  PowerPoint  files;  and  PDFs,  images 
and  video.  As  such,  it  covers  many  essential 
sources  of  information,  but  clearly  less  than 
other  products. 

Google  Desktop  offers  some  interesting 
ways  of  managing  information.  Google  Gad¬ 
gets,  which  can  be  placed  anywhere  on  your 
desktop,  shows  you  new  e-mail,  news  feeds 
and  photos.  While  this  may  be  more  of  a  gim¬ 
mick,  Google  Desktop  for  Enterprise  (also 
free)  is  all  business.  For  example,  it  extends 
e-mail  support  to  IBM  Lotus  Notes. 

What’s  really  noteworthy,  however,  is  that 
Desktop  for  Enterprise  works  in  conjunction 
with  the  Google  Search  Appliance  or  Google 
Mini.  Put  simply,  when  an  organization  installs 
one  of  these  search  appliances,  employees  can 
search  their  PCs,  corporate  intranet  and  the 
Internet  from  one  search  page. 

Right  after  setup  finishes,  Google  Desktop 
goes  to  work  indexing  e-mail,  files  and  Web 
history.  The  process  usually  takes  a  few  hours, 
but  since  the  software  works  while  your  PC 
is  idle,  you  shouldn’t  notice  and  slowdowns. 
From  then  on,  Google  Desktop  automatically 
refreshes  the  index  whenever  new  e-mail  is 
received  or  you  save  a  file. 

Here’s  a  neat  trick:  Similar  to  Google’s 
Web  search  servers,  Desktop  creates  cached 
copies  of  files  each  time  you  view  them.  So  if 
you  accidently  delete  the  original  file,  Google 
Desktop  can  often  come  to  the  rescue. 

Searching  for  content  follows  Google’s 
trademark  ease  of  use.  I  often  used  the  Quick 
Search  Box,  which  appears  in  the  center 
of  your  screen.  After  typing  a  few  letters  or 
words,  the  top  results  automatically  appear. 
To  see  more  details,  you  can  do  a  more  tradi¬ 
tional  Desktop  Search  from  a  browser.  This 
option  returns  relevant  results  as  a  Web  page, 
with  each  hit  including  an  icon  that  identifies 
the  file  type,  the  file  name  and  a  preview  of  the 
file  with  the  search  term  highlighted. 

By  default,  Google  Desktop  orders  results 
by  when  you  last  opened  each  item,  but  will 
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also  sort  the  results  by  relevance.  In  addition, 
you  may  filter  the  results  to  limit  results  to 
e-mails,  files  or  Web  history. 

An  Advanced  Search  form  lets  you  specify 
the  type  of  search,  words  the  file  must  contain 
and  date  range  —all  without  having  to  remem¬ 
ber  any  complex  syntax.  However,  Google 
Desktop  doesn’t  go  much  beyond  these  fairly 
rudimentary  search  options. 

Besides  the  Quick  Search  Box,  and  Deskbar, 
Google  Desktop  can  optionally  add  a  search 
box  to  Microsoft  Outlook.  I  found  this  search 
to  be  more  comprehensive  compared  with 
Outlook’s  built-in  function,  which  only  lets 
you  search  individual  folders. 

If  you’re  using  Windows ,  the  obvious  ques¬ 
tion  is  why  bother  with  Google  Desktop?  The 
simple  reason,  is  Google  searches  additional 
assets,  such  as  Gmail  and  PDF  files.  It  adds 
thumbnail  previews  of  search  results  for 
images,  videos  and  Web  history. 

5a  ISYS  Personal  Edition, 

Version  9.6 

Designed  for  individual  power  users,  ISYS 
Personal  Edition  lives  up  to  its  name.  The  $99 
application  (for  a  12-month  license)  has  the 
most  complex  interface  and  operation  of  the 


products  tested. 

For  the  price,  you  can  crawl  50,000  docu¬ 
ments  per  index,  and  search  a  maximum  of 
50,000  documents  per  query.  This  solution 
supports  200  file  formats  and  recognizes  60 
languages  for  indexing  and  searching.  If  you 
need  more  capacity,  the  company  offers  ISYS 
Workgroup  and  a  high-end  enterprise  server 
that  federates  results  from  content  reposito¬ 
ries,  including  Documentum,  Interwoven  and 
Microsoft  SharePoint. 

For  testing  the  personal  edition,  I  indexed 
e-mail  from  Microsoft  Outlook  2007,  pub¬ 
lic  folders  on  an  Exchange  server  and  Lotus 
Notes  7.  To  evaluate  how  well  ISYS  found 
files,  I  indexed  a  mix  of  Microsoft  Office  2007 
(Word,  Excel  and  PowerPoint),  MP3  audio 
files  and  JPEG  graphics. 

During  setup,  ISYS  gives  you  the  option  to 
index  documents  and  e-mails  —  or  folders  and 
Web  sites.  However,  it’s  not  immediately  clear 
what  to  do  next.  Hidden  within  a  menu,  you 
then  need  to  activate  the  index.  Once  you  fig¬ 
ure  out  indexing,  the  user  interface  is  rich  in 
information,  though  there’s  a  longer  learning 
curve  compared  with  the  other  programs . 

Basic  queries  are  simple  enough.  Type  the 
term,  select  the  index,  and  ISYS  returns  a 
list  of  likely  documents  ranked  by  relevance. 


Results  appear  quickly,  in  about  half  a  second, 
which  matches  the  performance  of  the  other 
products  tested.  Further,  you  can  schedule 
how  often  an  index  is  updated. 

Beyond  a  list  of  documents,  the  user  inter¬ 
face  provides  a  novel  timeline  that  shows  dates 
when  documents  that  match  your  search  were 
created  or  modified.  One  oversight  is  that  you 
only  see  results  from  one  index  at  a  time.  That 
is,  if  you  search  e-mails  and  find  a  message, 
you  then  need  to  select  the  ‘My  Documents’ 
index  and  rerun  the  search  to  find  relevant 
documents.  Other  programs  generally  let  you 
federate  search  results  from  all  repositories. 

ISYS  Personal  Edition’s  preview  pane 
shows  an  approximation  of  the  selected  docu¬ 
ment  and  highlights  the  search  term.  In  addi¬ 
tion,  there  are  many  ways  to  refine  results. 
During  indexing,  the  program  automatically 
creates  categories  based  on  documents’  con¬ 
tent.  It  also  detects  entities,  such  as  people, 
places  and  e-mail  addresses.  This  lets  you 
quickly  filter  results  by  those  categories. 

Once  you  find  what  you’re  looking  for,  ISYS 
enables  you  to  tag  the  file,  send  it  to  a  colleague 
or  extract  it  to  the  clipboard. 

More  advanced  procedures  and  queries 
require  a  trip  to  the  toolbar.  There  are  four  dif¬ 
ferent  search  options,  such  as  command-based 
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CLEAR  CLEAR  CHOICE  TEST:  DESKTOP  SEARCH  ENGINES 

fat 


Windows  7  Search  might  be  all  you  need 

If  you're  coming  from  Windows  XP  land,  you  know  the  frustration  of  trying  to  find  files 
on  your  hard  disk  —  it’s  slow  and  cumbersome.  In  fact,  much  of  the  software  covered 
in  this  review  was  created  to  solve  this  problem. 

But  with  many  organizations  on  the  cusp  of  switching  to  Windows  7,  can  you  get  by 
with  Windows  7’s  built-in  search?  For  basic  tasks,  the  answer  is  probably  yes. 

Windows  7  indexes  most  common  files  by  default,  including  documents,  e-mail  and 
offline  files  -  though  the  initial  process  is  two  to  three  times  slower  compared  with  XI. 
But  it’s  easy,  using  the  Windows  Control  Panel,  to  add  or  remove  a  folder  location  or 
file  type.  Windows  7  also  searches  external  hard  drives,  networked  PCs  and  document 
libraries. 

Microsoft  gives  you  a  reasonable  number  of  other  indexing  options.  Conversely,  you 
can  disable  search.  But  only  rarely  did  I  notice  extra  hard  disk  and  CPU  activity,  usually 
when  the  system  was  indexing  a  large  amount  of  new  content.  So  even  if  you  decided 
to  add  Google  Desktop  or  another  application,  I’d  leave  Windows  Search  alone. 

To  find  a  file,  start  typing  into  the  Start  menu  search  box  and  you’ll  see  a  list  of  rel¬ 
evant  documents,  pictures,  music  and  e-mail  on  your  PC  —  almost  as  fast  as  you  can 
type.  Results  are  grouped  by  category  and  a  preview  pane  shows  the  document  with 
keywords  highlighted.  If  search  results  are  too  numerous,  you  can  narrow  them  by  date, 
file  type  and  other  categories. 

For  power  users,  Windows  7  Search  includes  an  Advanced  Query  Syntax  as  an  alter¬ 
nate  way  to  narrow  a  query. 

Because  Search  is  engrained  in  Windows  7,  you  can  also  use  the  search  box  in  a 
folder  or  library. 

That’s  all  good.  But  there  are  still  some  limits  to  Windows  7  Search.  For  example,  it 
only  searches  PST  within  a  running  instance  of  Outlook  —  and  shared  drives  can  only 
be  indexed  after  they’re  mirrored  on  your  local  system.  So  while  Windows  7  Search  is  a 
notable  improvement,  it  still  leaves  the  door  open  for  third-party  applications. 

—  Mike  Heck 


queries  and  menu-assisted  searches.  Here, 
ISYS  does  shield  you  from  the  hard  work.  For 
instance,  the  menu-assisted  search  form  takes 
you  step-by-step  through  constructing  intri¬ 
cate  Boolean  queries. 

In  the  end,  ISYS  Personal  Edition  searches 
accurately  and  quickly.  It’s  a  shame  that  the 
company  didn’t  adapt  the  more  modern  inter¬ 
face  and  faceted  navigation  included  with  its 
enterprise  product.  That  would  help  users 
jump  over  the  usability  hurdle. 

6*  XI  Professional  Client, 

Version  6.7 

XI  Technologies’  XI  was  first  released  in 
2002  as  a  free  download.  Additionally,  Yahoo 
licensed  the  technology  and  it’s  still  available 
as  the  no-charge  Yahoo  Desktop  Search. 

The  latest  commercial  product  that  I  tested, 
now  called  XI  Professional  Client  ($49.95), 
layers  a  lot  of  capabilities  on  top  of  the  gratis 
offerings  —  more  than  enough  to  justify  an 
investment.  The  software  supports  more  than 
500  file  types,  lets  you  sort  and  refine  your 
results,  and  searches  e-mail  in  a  multitude  of 
e-mail  systems,  including  Microsoft  Outlook, 
Lotus  Notes  and  Mozilla  Thunderbird. 

Additionally,  XI  offers  two  separate  enter¬ 
prise  solutions  that  use  the  Professional  Cli¬ 
ent.  Therefore,  users  get  a  single,  consistent 
way  to  search  and  view  results  of  content  that 
sits  beyond  their  desktop,  without  any  new 
desktop  software. 

XI  eDiscovery  Search  employs  a  dedicated 
server  to  crawl  enterprise  applications  as  it 
looks  for  documents  related  to  litigation.  XI 
Search  for  Microsoft  SharePoint  provides  a 
convenient  way  to  find  data  residing  in  Share- 
Point  repositories. 

Xl’s  setup  program  only  has  a  few  setting 
choices,  making  the  process  nearly  goof  proof. 
There’s  not  much  printed  documentation,  but 
you  really  don’t  need  much.  And  online  help  is 
thorough.  Optionally,  IT  administrators  can 
pre-configure  and  manage  XI  deployments. 
For  example,  staff  can  bundle  pre-configured 
saved  searches  as  part  of  a  deployment  that’s 
done  through  Microsoft  Systems  Management 
Server  or  other  management  applications. 

Indexing  local  e-mail,  attachments  and 
other  files  initially  required  about  20  min¬ 
utes.  Afterwards,  I  specified  how  often  new  or 
changed  material  is  added  to  the  index.  There 
wasn’t  any  noticeable  system  performance  hit 
while  XI  ran  in  the  background.  Also,  the  XI 
index  is  pretty  small  —  less  than  20%  of  the 
data  being  scanned. 

The  XI  interface,  coupled  with  the  product’s 
excellent  search  speed,  make  for  a  produc¬ 
tive  experience.  As  I  started  to  type  a  query, 


search  results  appeared  almost  instantly  and 
included  all  sources.  Alternately,  using  the 
tabbed  interface,  I  limited  results  to  e-mail, 
documents  or  other  criteria.  Within  these  fil¬ 
ters,  you  might  further  refine  results,  sorting 
them  by  name,  date,  file  type  and  location. 

For  more  experienced  users,  XI  includes 
some  advanced  capabilities.  For  instance, 
you  can  search  by  phrase,  Boolean  logic  or  a 
date  range. 

Importantly,  the  XI  interface  provides  full- 
fidelity  preview  of  files  in  their  native  format, 
including  all  Microsoft  Office  applications, 
PDF  and  media  (music,  images  and  video).  I 
appreciated  the  capability  to  see  e-mail  attach¬ 
ments  without  opening  a  second  application 
and  to  peek  inside  of  compressed  Zip  files 
without  uncompressing  them.  In  fact,  even  if 
you  don’t  have  the  source  application  (such  as 
Microsoft  Visio  or  AutoCAD),  XI  will  render 
the  file  and  let  you  interact  with  it. 

I  also  liked  the  way  XI  searches  multiple 
Outlook  PST  files  without  mounting  them  in 
Outlook,  which  is  great  when  you  need  to  find 
something  in  an  e-mail  archive.  This  version, 
additionally,  lets  you  search  and  preview  RSS 
feeds  —  something  not  seen  in  other  products. 


Since  many  enterprise  applications  (such  as 
help  desk  systems)  create  RSS  feeds,  this 
capability  extends  the  ways  you  can  use  XI  to 
locate  information. 

Once  you’ve  located  the  right  file,  only  one 
step  is  required  to  open,  send  by  e-mail,  add 
to  a  Zip  File  or  perform  similar  tasks.  Other 
time-saving  capabilities  let  you  save  searches 
and  export  results  as  a  text  file  or  Excel 
spreadsheet. 

The  only  very  minor  nit  I  could  find  was 
that  the  version  I  tested  would  not  work  with 
the  64-bit  version  of  Outlook  2010,  which 
should  be  fixed  shortly.  None  of  the  other 
products  (with  the  exception  of  Windows  7 
Search)  recognized  Outlook  2010  at  all.  ■ 

Heck  manages  portals  for  a  large  pharma 
company  and  writes  about  enterprise 
applications.  He  can  be  reached  at 
mikeheck@comcast.net. 


©  Go  online  to  see  slideshow 
of  desktop  search  features. 

http://tinyurl.com/2cf2ecp 
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MARKETPLACE 


WHILE  YOU  WERE  OUT 

For:  lOL C  Time:  middle.  JL  hl*4fcf~ 

PROBLEM: 

SERVER  WENT  DOWN 

X 

POWER  FAILURE 

X 

WATER  ON  FLOOR 

X 

TEMPERATURE  HIGH 

X 

Sensaphone  Remote  Monitoring  Products  use 
redundant  communication  paths,  built-in  battery 
backup,  and  supervised  sensors  to  make  sure  that 
when  something  happens  in  your  computer  room 
you...  GET  THE  MESSAGE. 


Notification  via: 

•  Voice  Phone  Call 

•  Text  Message 

•  Pager 


E-Mail 
SNMP  Trap 
Fax 


Get  your  FREE  application  guide  now 


SENSAPHONE* 

REMOTE  MONITORING  SOLUTIONS 


877-373-2700 

www.sensaphone.com 


MADE  IN  THI 


u 


.  . 


i  MicroGoose 

0  Climate  Monitor 

B*  *199 

Monitor 

•  Temperature 

•  Humidity  To  order  your  copy,  visit 

ITWatchDogs.com/Book 

Alerts  with  Escalations  ^ 

•  E-mail 

•SNMP  (v  1 ,  v2c,  v3) 


Server  Room 
Climate  &  Power 
Monitoring 


■eatures 

|Built-in  Web  Interface 
Power  over  Ethernet 
Optional  IP  Web  Cams 


sales@itwatchdogs.com  •  512.257.1462  •  www.itwatchdogs.com 


Make  Life  Easier 


cablesys.com/nw  cs@cablesys.com  800.555.7176 

^Copyright  2010,  Cablesys 


Patching  96-Ports,  Switches  to  Panels 

Option  1 :  Buy  96  patch  cords,  open  96  bags,  run  cables, 
...untangle,  organize,  bundle,  tie  wrap,  and  label  96  cords. 

Option  2:  Call  Cablesys,  we  ship  you  16  pre-bundled 
and  pre-labeled  patch  cords  wrapped  nice  and  neat.  Just 
lay  the  bundles  and  you're  done. 

You  name  it,  we  do  it  -  Fiber,  CAT5e,  CAT6,  CAT6A,  multi- 
media,  POS  terminals,  field  station  deployments.  Less  work 
and  save  money,  now  that's  life  made  easy.  Talk  to  your 
dedicated  account  rep  today. 
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BACKSPIN  BY  MARK  GIBBS  IliHIItilllllllllllllllllllllimiilllllllllllilllllillllllll 

The  iPhone  4:  Just  take  it  back 


IF  SOMETHING  doesn’t  work  and  it  hasn’t 
hurt  you  somehow,  what  do  you  do?  You  take 
it  back  and  get  a  refund.  It’s  that  simple. 

For  example,  a  few  weeks  ago  I  purchased  a  clock  radio  for  my  bed¬ 
side  table.  I  tried  it  out  and  it  worked  well  enough  but  that  night,  I  spot¬ 
ted  a  problem:  The  device’s  display  was  illuminated  by  one  of  those 
super-bright  blue  LEDs  and  with  the  lights  off,  it  was  like  being  in  a 
bad  science  fiction  movie. 

Did  I  call  Sony  and  demand  a  fix?  No.  Did  I  bitch  endlessly  to  all 
and  sundry?  No.  What  did  I  do?  I  voted  with  my  dollars;  I  returned 
the  product.  End  of  story.  Now,  give  me  a  moment  and  I’ll  explain 
the  relevance  of  this  tale  to  the  hoo-ha  over  the  iPhone  4’s  antenna 
problems. 

In  case  you  missed  the  ugly  details,  the  iPhone  4’s  antenna  problems 
stem  from  its  design:  The  antenna  is  that  wrap-around  stainless  steel 
band  and  the  break  you  see  in  the  band  (it’s  on  the  left  side  if  the  screen 
is  facing  you)  is  the  “feed  point,”  the  place  where  the  radio  transceiver 
connects  to  the  antenna.  Here’s  the  problem:  When  a  user’s  big,  hairy 
fingers  bridge  this  feed  point  the  antenna  stops  working  properly.  Big 
surprise. 

Why  this  problem  wasn’t  spotted  and  solved  during  development 
will  probably  remain  a  mystery.  The  fact  is  an  add-on  insulating  rubber 
bumper  solves  the  problem  by  preventing  the  gap  from  being  bridged. 
If  you’re  desperate  a  Colbert  Wrist  Strong  silicon  bracelet  will  do  just 
fine,  as  will  dipping  your  hands  in  liquid  rubber,  wearing  latex  gloves 
or  holding  the  phone  with  tongs. 

Are  these  elegant  solutions?  No,  not  really.  But  they  all  solve  the 


problem  if  —  and  this  is  key  —  if  you  want  the  problem  solved. 

Steve  Jobs’  admission  at  a  July  16  press  conference  that  “we’re  not 
perfect”  was  amusing  because  it’s  hard  to  swallow  the  idea  that  anyone 
ever  believed  such  a  thing,  even  Jobs. 

But  the  bit  that  was  really,  well,  lame  was  the  contention  that  every 
other  4G  cell  phone  has  the  same  problem.  The  argument  that  Apple  is 
no  worse  than  other  manufacturers  has  to  be  one  of  the  dumbest  mar¬ 
keting  positions  ever.  The  company  that  redefined  personal  computer 
design,  the  company  that  encouraged  us  to  “think  different”,  basically 
admitted  that  it  hadn’t  built  a  better  phone  and  that  it  thought  like 
everyone  else. 

But  leaving  all  that  aside,  the  iPhone  4  owners  have  every  right  to 
be  disappointed  and  angry  because  the  product  is,  in  fact,  quite  seri¬ 
ously  flawed.  Turns  out  that  some  are  so  verklempt  they  have  started 
class-action  lawsuits. 

To  all  of  you  fulminating  iPhone  4  owners:  Get  a  grip.  If  this  antenna 
problem  affected  you,  how  long  was  it  until  you  figured  out  what  the 
issue  was?  I’ll  bet  it  was  within  the  30-day  period  where  you  could 
have  returned  it.  But  no,  you  had  to  have  your  iPhone  4  and  you  were 
going  to  be  a  big  baby  about  it. 

Remember  the  tale  about  the  clock  radio  I  started  this  column  with? 
Why  didn’t  you  take  your  iPhone  back  and  demand  a  refund?  Why 
didn’t  you  vote  with  your  dollars? 

It  really  is  that  simple.  ■ 

Gibbs  finally  found  a  good  clock  radio  in  Ventura,  Calif.  Keep  him 
awake  at  backspin@gibbs.com. 
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A  new  approach  to  taming  the  trolls 


ANXIOUS  TO  lift  an  outright  ban  on  com¬ 
ments,  the  Attleboro  (Mass.)  Sun-Chronicle 
has  begun  requiring  two  things  of  online 
readers  who  want  to  leave  their  thoughts  on 
stories:  99  cents  and  their  real  names. 

While  the  change  is  drawing  criticism  from 
some  quarters,  it  is  a  fascinating  experiment 
and  a  bold  response  to  the  endless  trolling,  vit¬ 
riol  and  drivel  that  is  enabled  by  anonymity  in  online  forums. 

Pay  little  attention  to  the  99  cents;  it’s  not  important  here.  The  fee  is  a 
one-time  payment  designed  not  to  generate  revenue  —  this  isn’t  about 
“saving  newspapers”  —  but  to  enable  identity  verification  at  initial  sign¬ 
up  and  whenever  registered  readers  leave  comments. 

From  the  newspaper’s  story  announcing  the  decision:  “This  change 
is  being  made,  (publisher  Oreste)  D  Arconte  said,  in  an  attempt  ‘to  elimi¬ 
nate  past  excesses  that  included  blatant  disregard  for  our  appropriate¬ 
ness  guidelines,  blind  accusations  and  unsubstantiated  allegations ... 
This  is  a  necessary  step,  in  my  opinion,  if  The  Sun  Chronicle  is  going  to 
continue  to  provide  a  forum  for  comments  on  our  websites.’” 

Comments  had  been  suspended  since  April  12. 

Reasonable  people  may  disagree  with  D’Arconte  on  whether  this 
step  is  necessary.  The  benefits  of  allowing  anonymous  comments  are 
well  known  and  vigorously  defended.  But  what’s  interesting  is  that 
this  newspaper  weighed  the  pros  and  cons  of  anonymity  and  decided 
that  the  costs  outweigh  the  benefits. 

That  seems  perfectly  reasonable  to  me,  too.  Let’s  see  how  the  news¬ 
paper’s  readers  respond. 


Town  official  doubly  insulted  by  spyware  allegation 

How  dare  you  accuse  me  of  being  a  stumblebum  of  a  spy?  That’s 
essentially  the  indignant  reaction  of  Sturbridge,  Mass.,  Selectman 
Tom  Creamer  to  fellow  board  member  Scott  Garieri’s  allegation  that 
Creamer  intentionally  sent  him  a  spyware-laden  e-mail. 

Here’s  the  setup  from  a  story  in  the  Worcester  (Mass.)  Telegram  & 
Gazette:  “On  June  21,  Mr.  Garieri  said  at  a  selectmen’s  meeting  his  ‘IT 
guy’  (which,  he  said,  this  week  is  the  same  person  who  hooked  up  his 
printer)  picked  up  spyware  attached  to  e-mails  sent  by  Mr.  Creamer. 
Given  Mr.  Creamer’s  “prior  employment  history”  of  making  others’ 
‘personal  information  available,’  Mr.  Garieri  said,  he  felt  it  necessary 
to  block  all  of  Mr.  Creamer’s  incoming  e-mails.” 

The  story  describes  Creamer  as  having  been  “a  consultant”  to  the 
Department  of  Justice,  but  for  purposes  of  this  column  we  will  leap 
to  the  entirely  unsupported  assumption  that  he  was  a  full-blown 
government  spook.  Because  not  only  does  Creamer  deny  sending 
any  spyware,  he  contends  that  the  mere  fact  that  Garieri’s  “IT  guy” 
suspects  him  of  doing  so  is  proof  he  did  not  because  —  are  you  fol¬ 
lowing  me  here?  —  if  he  had  he  would  have  left  no  fingerprints;  he’s 
that  good. 

More  from  the  story:  “Based  on  (my)  prior  background  in  intel¬ 
ligence,  believe  me,  if  I  had  something  attached  to  (the  e-mail),  your 
people  would  never  find  it,  so  let’s  not  be  ridiculous,”  Mr.  Creamer 
responded  that  night.  “That’s  such  an  insult  to  me.” 

How’s  that  for  an  air-tight  defense?  ■ 

Comments  to  me  remain  free.  The  address  is  buzz@nww.com. 
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MIL-SM24T4DPA 

Native  IPv6  support  for  next 

generation  network  devices 

•  (24)  10/1 00/1  OOOBase-T 
copper  ports 

•  (4)  10/1 00/1  OOOBase-T  copper 
or  100/1 000  SFP  Ports 

•  Enhanced  Security:  RADIUS, 
SSH/SSL,  Web  Encryption 

•  Comprehensive  QoS:  Q-in-Q, 
Multicast  VLAN  registration 


MIL-SM8002TG 

Indoor/Protected  Outdoor  0°  to  60°  C 
Operating  Temperature  Range 

•  (7)  1 0/1 00/1 000Mbps  Switch 
plus  (2)  Combo  RJ-45/SFP  Ports 

•  IGMP  snooping  and  Query  mode 
support  for  Multi-Media  application 
(IGMP  VI  and  V2) 

•  IEEE  802.1  x  authentication 

•  Broadcast  storm  filters 

•  VLAN,  QoS,  CoS,  RSTP 


MIL-SM8TAF1GPB 

Intelligent  Layer  2  switch  with  (8) 

1 0/1 00/1 000  Power-over-Ethernet 
(PoE)  ports 

•  (8)  1 0/1 00/1 000BASE-T,  with  auto 
negotiation  (1)  Gigabit  SFP 

•  Fanless  design 

•  Authentication  -  RADIUS,  802.1  X 

•  VLAN  Support  Up  to  64  VLANs, 
port-based  or  tagged  (802.1  Q) 

•  "Green"  low  power  mode 


Reliable  Switches,  Reliably  Available 

Your  network's  users  rely  on  your  network  to  be  available  without  fail.  Shouldn't  you  expect  the  same  reliability  when 
it  comes  to  product  availability?  Our  featured  MILAN  switches  are  built  to  assure  your  network's  uptime.  They  are  also 
guaranteed  to  be  in  stock.  Contact  your  reseller  to  order. 


TRANSITION 

NETWORKS  < 


1-800-526-9267  |  info@transition.com  |  www.transition.com/switching 


Over  2  million 
businesses  have 
gone  Google. 


“Going  Google"  means  switching  your  business  to  Google  Apps : 
an  online  email,  calendar,  and  document  program  that's  based 
on  the  web.  Learn  more  at  www . google . com / qoneqooqle . 


©  2010  Google  Inc.  All  rights  reserved.  Google  and  Google  logo  are  trademarks  of  Google  Inc. 

All  other  company  and  product  names  may  be  trademarks  of  the  respective  companies  with  which  they  are  associated. 
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